![]() ![]() TL DR DKIM gives us the message body and header hashes on a silver platter-digitally signed by the transmitting domain! The recipient can then retrieve the signer’s public key with a DNS query, and attempt to verify the digital signature to determine whether the signature is valid. The public key of the signing entity is published as a _domainkey DNS TXT Resource Record for the signer’s domain. ![]() The signing entity hashes the body of the message and digitally signs it along with a subset of its header fields using its private key. The entity can be the organization of the author of the message, or a relay. What is DKIM?ĭomainKeys Identified Mail (DKIM) is an internet standard that allows an entity to assert responsibility for a message in transit. Wouldn’t it be great if there was something more widely used and tamper-resistant? Enter DKIM.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |