DomainKeys is an e-mail authentication E-mail authentication is the effort to equip messages of the e-mail transport system with enough verifiable information, so that recipients can recognize the nature of each incoming message automatically. It differs from content filtering system designed to verify the DNS domain A domain name is an identification label that defines a realm of administrative autonomy, authority, or control in the Internet, based on the Domain Name System of an e-mail Electronic mail, most commonly abbreviated email and e-mail, is a method of exchanging digital messages. E-mail systems are based on a store-and-forward model in which e-mail computer server systems accept, forward, deliver and store messages on behalf of users, who only need to connect to the e-mail infrastructure, typically an e-mail server, sender and the message integrity Data integrity is ensuring data is "whole" or complete. Data that has integrity is identically maintained during any operation . Put simply, data integrity is the assurance that data is consistent and correct. The DomainKeys specification has adopted aspects of Identified Internet Mail to create an enhanced protocol called DomainKeys Identified Mail DomainKeys Identified Mail is a method for email authentication that allows an organization to take responsibility for a message in a way that can be validated by a recipient. The organization can be a direct handler of the message, such as the author, the originating sending site or an intermediary along the transit path; or an indirect handler, (DKIM). This merged specification became the basis for an IETF The Internet Engineering Task Force develops and promotes Internet standards, cooperating closely with the W3C and ISO/IEC standards bodies and dealing in particular with standards of the TCP/IP and Internet protocol suite. It is an open standards organization, with no formal membership or membership requirements. All participants and managers are Working Group which guided the specification toward becoming an IETF standard.
Both DomainKeys and DKIM were published in May 2007. DomainKeys was issued as a "historical" protocol and DKIM DomainKeys Identified Mail is a method for email authentication that allows an organization to take responsibility for a message in a way that can be validated by a recipient. The organization can be a direct handler of the message, such as the author, the originating sending site or an intermediary along the transit path; or an indirect handler, was issued as its standards-track replacement.
See also
- Sender ID Sender ID is an anti-spoofing proposal from the former MARID IETF working group that tried to join Sender Policy Framework and Caller ID. Sender ID is defined primarily in Experimental RFC 4406, but additional parts in RFC 4405, RFC 4407 and RFC 4408
- DomainKeys Identified Mail DomainKeys Identified Mail is a method for email authentication that allows an organization to take responsibility for a message in a way that can be validated by a recipient. The organization can be a direct handler of the message, such as the author, the originating sending site or an intermediary along the transit path; or an indirect handler, (DKIM)
- Author Domain Signing Practices In computing Author Domain Signing Practices is an optional extension to the E-mail authentication scheme DKIM, whereby a domain can publish the signing practices it adopts when relying mail on behalf of associated authors. ADSP is still[update] under discussion in the IETF DKIM working group, but has almost completed the process for formal IETF
- Sender Policy Framework Sender Policy Framework is an e-mail authentication system designed to prevent E-mail source address spoofing common in e-mail spam that results in backscatter. SPF allows domain owners to specify which Internet hosts are allowed to send e-mail claiming to originate from that domain by creating a specific DNS TXT record. Mail exchangers that use (SPF)
- E-mail authentication
References
| This article includes a list of references, related reading or external links, but its sources remain unclear because it lacks inline citations. Please improve this article by introducing more precise citations where appropriate. (December 2009) |
- RFC 4870 Domain-Based Email Authentication Using Public Keys Advertised in the DNS (DomainKeys)
- RFC 4871 DomainKeys Identified Mail (DKIM) Signatures
External links
- DKIM.org DKIM resources website: implementations, FAQ, news
- IETF DKIM working group (started 2006)
- Yahoo!'s description of DomainKeys
- Yahoo!'s statement about IPR claimed in DKIM draft
- Yahoo!'s free software reference implementation of DomainKeys
- U.S. Patent 6,986,049
- SpamCop FAQ entry about bogus bounces also discusses DomainKeys
Categories: E-mail authentication | Cryptographic protocols Cryptographic protocols are communication protocols which are designed to provide security assurances of various kinds, using cryptographic mechanisms. Classic assurances include confidentiality, message integrity, and more recent research includes anonymity assurances. The term "protocol" is used in a wide sense, to include off-line | Spam filtering | Yahoo!
Linux-Magazin Online
Der neue Exim bringt native Unterstuetzung fuer Domainkeys Identified Mail (DKIM). Bisher war dafuer eine externe Bibliothek noetig. ...
