STD 76

RFC 6376

DomainKeys Identified Mail (DKIM) Signatures, September 2011

File formats:
icon for text file icon for PDF icon for HTML icon for inline errata
Status:
INTERNET STANDARD (changed from DRAFT STANDARD)
Obsoletes:
RFC 4871, RFC 5672
Updated by:
RFC 8301, RFC 8463, RFC 8553, RFC 8616
Authors:
D. Crocker, Ed.
T. Hansen, Ed.
M. Kucherawy, Ed.
Stream:
IETF
Source:
dkim (sec)

Cite this STD: TXT  |  XML

Discuss this RFC: Send questions or comments to the mailing list iesg@ietf.org

Other actions: View Errata  |  Submit Errata  |  Find IPR Disclosures from the IETF  |  View History of RFC


Abstract

DomainKeys Identified Mail (DKIM) permits a person, role, or organization that owns the signing domain to claim some responsibility for a message by associating the domain with the message. This can be an author's organization, an operational relay, or one of their agents. DKIM separates the question of the identity of the Signer of the message from the purported author of the message. Assertion of responsibility is validated through a cryptographic signature and by querying the Signer's domain directly to retrieve the appropriate public key. Message transit from author to recipient is through relays that typically make no substantive change to the message content and thus preserve the DKIM signature.

This memo obsoletes RFC 4871 and RFC 5672. [STANDARDS-TRACK]


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.




Advanced Search