DomainKeys Identified Mail, or DKIM, is a method for validating the legitimacy of an email message using a digital signature. When DKIM is enabled for a given domain name, a public cryptographic key is published to the global Domain Name System and a private one is kept on the mail server. When a new message is sent, a signature is generated using the private key and when the email is received, that signature is ‘scanned’ by the incoming POP3/IMAP server using the public key. In this way, the recipient can easily distinguish if the message is legitimate or if the sender’s email address has been spoofed. A mismatch will appear if the content of the email message has been modified in the meantime as well, so DomainKeys Identified Mail can also be used to ensure that the sent and the received emails are identical and that nothing has been added or removed. This email authentication system will strengthen your email security, since you can verify the genuineness of the important email messages that you receive and your associates can do likewise with the messages that you send them. Based on the given email provider’s adopted policy, an email message that fails to pass the examination may be removed or may show up in the recipient’s inbox with a warning sign.