DKIM (DomainKeys Identified Mail)
DKIM adds a digital signature to your emails, proving they haven't been tampered with and truly came from your domain.
Email & DNS~1 min read
In plain English
A digital stamp on your emails that proves they really came from you and weren’t changed along the way—like a seal of authenticity.
DKIM (DomainKeys Identified Mail) is an email authentication method that uses a digital signature to verify the sender's domain and ensure the email content hasn't been altered during transit.
A private key is used to sign outgoing emails, and a public key is published in the domain's DNS records. Recipient servers use the public key to verify the signature. Together with SPF and DMARC, DKIM is essential for high email deliverability and security.
Examples & Usage
DKIM Header Example
DKIM-Signature: v=1; a=rsa-sha256; d=example.com; s=selector1; ...DKIM Public Key Record
selector1._domainkey.example.com TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSI..."