dkim-0----Page:7
1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16  17  18  19  20  21  22  23  24 

How’s DKIM work? Intended primarily for MTA to MTA (hence “domain”) Outbound MTA signs & adds new header line Public keys & other data in originating domain’s DNS Verifier generally an inbound MTA Signature present & DKIM verifier: (“base”) DNS lookup public key etc. Signature absent & diligent DKIM verifier DNS lookup policy to see if e.g. sig is “missing” (“ssp”) Repeat: mandating verifier actions out of scope! Details & problematic cases omitted! Presented later on.

PPT Version