- File formats:
- INTERNET STANDARD (changed from DRAFT STANDARD)
- RFC 4871, RFC 5672
- Updated by:
- RFC 8301, RFC 8463, RFC 8553, RFC 8616
- D. Crocker, Ed.
T. Hansen, Ed.
M. Kucherawy, Ed.
- dkim (sec)
Discuss this RFC: Send questions or comments to email@example.com
DomainKeys Identified Mail (DKIM) permits a person, role, or organization that owns the signing domain to claim some responsibility for a message by associating the domain with the message. This can be an author's organization, an operational relay, or one of their agents. DKIM separates the question of the identity of the Signer of the message from the purported author of the message. Assertion of responsibility is validated through a cryptographic signature and by querying the Signer's domain directly to retrieve the appropriate public key. Message transit from author to recipient is through relays that typically make no substantive change to the message content and thus preserve the DKIM signature.
This memo obsoletes RFC 4871 and RFC 5672. [STANDARDS-TRACK]
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.