DKIM (DomainKeys Identified Mail)

What is DKIM (DomainKeys Identified Email)?

DomainKeys Identified Mail (DKIM) is an email verification process that validates with a digital signature that an email came from the intended organization. When activated, DKIM validation happens automatically at the server level before ever reaching the recipient, authenticating the incoming email so the receiver knows it’s legitimate and not malicious.

DKIM - using DomainKeys Identified Email for email security

 

How to use DKIM

Before the message reaches the recipient, it undergoes a process of authentication. The inbound mail server intercepts the message and fetches the sender’s public DKIM signature from the sender’s DNS (domain name system) records. It then compares the private and public signature to see if they match. If they do, the inbound mail server authenticates the email and delivers it to the recipient. Otherwise, it drops the message and causes the delivery to fail.

Each email provider generally uses their own DKIM signatures. Microsoft provides here some information regarding DKIM settings in Microsoft 365.

About Vade

Vade for M365 is powered by a collaborative AI engine that continuously learns from an alliance of more than 1.4 billion protected mailboxes, millions of daily user reports, and a team of cybersecurity analysts. Combining AI-powered email security and integrated features that are made for MSPs, you’ll save time, reduce admin workload, and get more ROI from cybersecurity.

Learn more about Vade for M365 >