DomainKeys Identified Mail, or DKIM, is a method for validating the genuineness of an email by using an electronic signature. When DomainKeys Identified Mail is enabled for a given domain, a public key is published to the global DNS system and a private one is stored on the email server. When a new message is sent, a signature is generated using the private key and when the email is received, that signature is ‘scanned’ by the incoming email server using the public key. In this way, the receiver can easily discern if the message is authentic or if the sender’s address has been spoofed. A discrepancy will occur if the content of the email has been altered in the meantime as well, so DomainKeys Identified Mail can also be used to ensure that the sent and the delivered messages are identical and that nothing has been added or removed. This email authentication system will heighten your email security, as you can confirm the genuineness of the important email messages that you get and your colleagues can do the same with the emails that you send them. Depending on the particular email provider’s policies, an email message that fails to pass the test may be deleted or may be delivered to the recipient’s inbox with a warning.