DKIM , SPF , and DMARC are technologies helping administrators to protect their email domains. By setting up these TXT DNS records, you are making it much harder for attackers to spoof your domains to send emails.
- DKIM (for DomainKeys Identified Mail) is a security standard designed to make sure emails originate from legitimate servers and arent’s altered in transit. It uses public-key cryptography to sign emails with a private key that only the sending server has.
- SPF (for Sender Policy Framework) is an email authentication technique that is used to prevent spammers from sending messages on behalf of your domain. With SPF organizations can publish the email servers authorized to send emails for a given domain name.
- DMARC (for Domain-based Message Authentication, Reporting and Conformance) is an email authentication, policy, and reporting protocol built on SPF and DKIM. It enables organizations to publish policies for recipients servers about how to handle authentication failures and thus detect email spoofing attempts.