DomainKeys Identified Mail, or DKIM, is a method for checking the genuineness of an email message using an electronic signature. When DomainKeys Identified Mail is enabled for a given domain, a public cryptographic key is published to the global Domain Name System and a private one is kept on the email server. When a new email is sent, a signature is generated using the private key and when the email message is delivered, that signature is verified by the POP3/IMAP mail server using the public key. In this way, the receiver can easily tell if the email is legitimate or if the sender’s address has been forged. A discrepancy will occur if the content of the email message has been changed in the meantime as well, so DomainKeys Identified Mail can also be used to ensure that the sent and the delivered email messages are identical and that nothing has been attached or erased. This email validation system will strengthen your email security, as you can confirm the genuineness of the important email messages that you get and your associates can do the exact same thing with the messages that you send them. Depending on the given email service provider’s adopted policy, an email message that fails the test may be removed or may emerge in the receiver’s inbox with a warning flag.