DomainKeys Identified Mail, or DKIM, is a method for checking the legitimacy of an email by using a digital signature. When DomainKeys Identified Mail is enabled for a particular domain name, a public encryption key is published to the global DNS system and a private one is stored on the mail server. If a new email is sent, a signature is issued using the private key and when the email message is delivered, that signature is ‘scanned’ by the incoming server using the public key. Thus, the recipient can easily distinguish if the email message is genuine or if the sender’s address has been spoofed. A mismatch will occur if the content of the email has been changed in the meantime as well, so DomainKeys Identified Mail can also be used to make sure that the sent and the delivered email messages are identical and that nothing has been added or removed. This email authentication system will enhance your email safety, as you can confirm the genuineness of the important emails that you receive and your colleagues can do likewise with the messages that you send them. Depending on the particular email provider’s policies, an email message that fails the check may be deleted or may show up in the recipient’s mailbox with a warning flag.