DKIM

DKIM is a mechanism with which outgoing emails are signed by the mail server. Recipients can check whether an email was actually sent from the correct server or not.

DKIM uses RSA, which uses a private key to sign emails and a public key to verify these signatures.

The public key is stored in the DNS zone of the sending domain. This allows the receiving email server to check the validity of the signature.

This signature is part of the email header, the base code of the message. Despite the importance of DKIM for email security, DKIM has not yet achieved the widespread use of SPF.

Test DKIM

You can check the email header of a sent email to see whether the DKIM key is also sent.

The following tools are also available for testing:

• LearnDMARC.com
• DKIM Record Lookup
• DKIM Record Checker

Please note that we are not associated with the providers of these tools.