The DomainKeys Identified Mail (DKIM) standard helps prevent spoofing on outgoing messages sent from your domain.
Email spoofing is when email content is changed to make the message appear from someone or somewhere other than the actual source.
Spoofing is a common unauthorized use of email, so some email servers require DKIM to prevent email spoofing.
We recommend setting up these security methods along with DKIM:
- Sender Policy Framework (SPF)–SPF specifies which domains can send messages for your domain.
- Domain-based Message Authentication, Reporting & Conformance (DMARC)–DMARC specifies how your domain handles suspicious emails.
DKIM adds an encrypted signature to the header of all outgoing messages. Email servers that get signed messages use DKIM to decrypt the message header and verify the message was not changed after it was sent.
If you are using a SpamExperts service and your sending domains already sign with DKIM, then this should not be changed.
SpamExperts will simply forward the DKIM signed messages along to the recipient.
If there is no DKIM signing, you can decide to either sign this on your sending MTA or sign with SpamExperts.
It's not obliged to sign with DKIM, however, it often helps to "authenticate" as much as possible your senders.
You can find more information on how to setup DKIM with SpamExperts at DKIM Certificate Generation
