What is the difference between DKIM results and DKIM?

What is the difference between DKIM results and DKIM?

DKIM (DomainKeys Identified Mail) is an email authentication method which makes sure your messages aren’t altered during the transaction between the sending and recipient servers. Typically, DKIM provides a key and signature that makes a user identify that the email received by them is not fake or altered.


DKIM results and DKIM are dependent on the DKIM records and policies (relaxed or strict) you have configured. In the sources section you will see that there are two DKIMs column, here is a breakdown on what these two columns mean:


  • DKIM domain: This column is the domain specified in your mail header as the return path header, envelope address or bounce address. This is the domain at the backend (of a 3rd party tool, etc) being used to send email from your from domain


  • From domain: This is the sending email address the recipient will receive email from. It will appear as the from domain in the email header.


  • DKIM results: This column checks if your DKIM domain is authorized to use the particular source to send emails or not. It will display pass if the public DKIM key at the receiver’s end matches the public key published at the From domain’s DNS.


  • DKIM: This column will pass if your From domain and DKIM domain are aligned, and if they abide by the set DKIM policy. If the return path is set then your From and DKIM domain will match, and we say DKIM is aligned. Next it checks if they follow the below DKIM policy:


Relaxed policy (alignment):

In this policy DKIM domain and From domain must be an exact match or a parent/child match. This policy allows a subdomain to be used and still meet the domain alignment requirement.



DKIM domain

From domain

DKIM 

email.kdmarc.com

kdmarc.com

pass

kdmarc.email.com

kdmarc.com

fail

kdmarc.com

kdmarc.com

pass



Strict policy (alignment):

In this policy DKIM domain and From domain must be an exact match for the DKIM to pass.



DKIM domain

From domain

DKIM 

email.kdmarc.com

kdmarc.com

fail

kdmarc.email.com

kdmarc.com

fail

kdmarc.com

kdmarc.com

pass

email.kdmarc.com

email.kdmarc.com

pass

    • Related Articles

    • Difference Between DomainKey And DKIM

      DomainKeys Identified Mail (DKIM) is the successor of Yahoo DomainKeys. Both DomainKey and DKIM have similarities, however, DKIM has an additional aspect of Cisco’s Identified Internet Mail standard (IIM). The enhancement of this standard gives more ...

    • What is the difference between SPF results and SPF?

      SPF Stands for Sender Policy Framework, it assists in adding restrictions on your DNS server and defines who can send email from your domain. Besides, SPF plays a vital role in preventing domain spoofing as it doesn’t allow unauthorized sources to ...

    • How to Setup DKIM for SMTP2GO?

      This article will provide you a step-by-step guide to setup your sender domain for SMTP2GO. Moreover, in case you don’t have a pre-existing sender domain, all emails sent via SMTP2GO are pre-signed with it’s own DKIM key. The only difference arises ...

    • What is DKIM?

      DKIM stands for DomainKeys Identified Mail, which is an email authentication technique that generates a digital signature in the header of an email. This digital signature is added within the message or body of the email and is secured with ...

    • What is DKIM?

      DomainKeys Identified Mail (DKIM) signature proves that the email is authentic and that the sender was authorized to use the domain name in the sender address. DKIM is defined in RFC 6376. To use DKIM, an RSA key pair is created by the system that ...