What is DKIM?

what is dkim

DKIM Definition

DKIM (DomainKeys Identified Mail) is an email authentication mechanism that allows the recipient mail server to check if a message has been altered during transit. This is done by the recipient server, checking and verifying an encrypted signature left on the message by the sending server to ensure the message arrived in the same form that it was sent.

How does DKIM Work?

DKIM is an open standard similar to SPF that helps combat malicious actors from spamming, spoofing, and phishing.  In its simplest form, DKIM is an authentication protocol that helps ensure the email received is the same as the email that was sent by the sender.  This is accomplished when the sending server leaves an encrypted signature on the message that is checked by the recipient server.  Within a DKIM signature, there are a number of tags available that authenticate different parts of the email.  If you would like to see a breakdown of a DKIM Signature and how it works, check out our Email Authentication Guide here!

How Does DKIM Compare to SPF and DMARC?

SPF (Sender Policy Framework) is a form of email authentication that specifically protects and authenticates the return path address used in the message delivery process, preventing “from address” forgery. It does this by ensuring that the sent email originated from a server that has permission to send emails on behalf of the sender.  Whereas DKIM, as discussed earlier, protects against unauthorized alterations of the email itself in transit.

DMARC (Domain-based Message Authentication, Reporting & Conformance) is not an authentication protocol, rather it helps the sender align their SPF and DKIM policies to help determine what should happen if an email doesn’t pass SPF or DKIM.  If you would like to learn more about DMARC, read our DMARC Guide here!

What is the Purpose of DKIM and Do I Need It?

The simple answer is yes, if you send high-volume transactional or marketing email, you should absolutely configure SPF and DKIM and set up DMARC to further define and protect your authentication policy.  Email authentication is important because it not only helps secure your email from bad actors and protect your recipients, but implementing the necessary authentication protocols also helps improve your email deliverability.  The more secure your email is, the more likely the mailbox providers are to get your email to the inbox.

Need Help with Email Authentication and Deliverability?

SocketLabs was founded over ten year ago to help high-volume email senders make the most of their email with the latest technology and the best support.  While our technology and support has evolved and progressed, our original values have stayed the same.  Whether its setting up your email engine with API or SMTP, learning more about authentication, or building your email in our marketing center, SocketLabs has the technology and the consulting available to put you on the path to success.

If you would like to learn more about SocketLabs and email authentication, you can also watch our email authentication webinar here!