DomainKeys Identified Mail

From Citizendium
Revision as of 11:21, 12 October 2009 by imported>David MacQuigg (add intro)
Jump to navigation Jump to search
This article is a stub and thus not approved.
 Main Article
 Discussion
Related Articles  [?]
Bibliography  [?]
External Links  [?]
Citable Version  [?]
 
https://en.citizendium.org/wiki/index.php?title=DomainKeys_Identified_Mail&printable=yes
This editable Main Article is under development and subject to a disclaimer.

DomainKeys Identified Mail (DKIM) is an email authentication method using a digital signature added to the the headers of a message. The signature provides strong assurance that there was no alteration of selected headers or the body of a message at any point after it left the signer's domain.

The signature can be verified by doing a DNS query for a public key in the signer's domain. Thus DKIM security depends on the distribution of public keys through DNS, rather than through a Public Key Infrastructure.

Verification does not depend on IP addresses or the path a message followed from signer to verifier. Thus DKIM avoids the forwarding problem seen by IP-based authentication methods.

Retrieved from "https://citizendium.org/wiki/index.php?title=DomainKeys_Identified_Mail&oldid=674635"