Mimecast's DMARC solution builds on the DKIM protocol as well as the SPF protocol to provide a stronger defense against spoofing.

    Free DKIM Record Check

    Check My Domain

    Using DKIM to prevent email spoofing

    DomainKeys Identified Mail (DKIM) is a technique for authenticating email that allows the receiver to verify that the message was sent and authorized by the owner of a domain. The protocol uses a cryptographic signature – an encrypted header added to the message – to verify that the email is authentic and that it has not been changed in transit. The receiver uses a public key found in the DKIM record in the domain's DNS to decrypt the DKIM signature and authenticate the message.

    While the protocol is helpful, DKIM alone is not a guaranteed way of preventing spoofing attacks. The DKIM information is not visible for a non-technical user and does nothing to address the possibility that the sender is spoofing the "from" address in the email – the only information that most users see. The private keys used to sign messages with DKIM can be stolen by hackers. And managing public keys can be a time-consuming burden for email security teams.

    DMARC, or Domain-based Message Authentication Reporting & Compliance, builds on the DKIM protocol as well as the Sender Policy Framework (SPF) protocol to provide a stronger layer of defense against email spoofing. DMARC ensures that the visible "from" address matches the underlying IP address to prevent spoofing. In order to pass the DMARC checks, a message needs to pass DKIM authentication and/or SPF authentication. The DMARC Analyzer app further provides instructions for how the emails that have failed the DMARC checks should be handled.

    The DMARC protocol can significantly minimize the damage attackers can cause through spoofing and or phishing attacks. However, it can be time-consuming and difficult to deploy DMARC without superior tools and qualified help. That's why more organizations turn to Mimecast when seeking to implement DMARC with minimal effort and delay.

    Using DKIM to prevent email spoofing

    Mimecast DMARC Analyzer: A faster path to authentication

    Mimecast DMARC Analyzer provides the tools and resources you need to implement DMARC quickly and easily while minimizing cost, risk and effort. DMARC Analyzer serves as an expert guide, providing analyzing software that enables the shortest time possible for publishing your reject policy. This Mimecast solution offers full insight into your email channels to make sure legitimate email does not get blocked, and delivers alerts, reports and charts that simplify the task of monitoring performance and enforcing authentication.

    With Mimecast DMARC Analyzer, you can:

    • Detect and block attackers by performing a DMARC check to determine whether email is attempting to spoof customers, employees and other parties.
    • Gain 360° visibility and governance across all email channels.
    • Implement DMARC policy on the gateway with self-service email intelligence tools.
    • Save time and money with a 100% SaaS-based solution.
    Mimecast DMARC Analyzer: A faster path to authentication

    Sie wollen mehr erfahren?

    Demo vereinbaren

    Easy-to-use tools for SPF, DKIM and DMARC authentication

    DMARC Analyzer provides a collection of self-service email intelligence tools to accelerate and simplify implementation of DMARC policy on the gateway.

    • User-friendly aggregate reports enable faster analysis and DMARC policy enforcement.
    • Forensic reports help email administrators track down malicious email sources more easily.
    • Summary reports issued daily and weekly help to monitor progress over time.
    • Two-factor authentication enhances email security.
    • Tools for checking DNS changes and receiving alerts when DNS records are altered enable administrators to monitor DNS changes over time.
    • DMARC/SPF/DKIM record checkers help to ensure valid DNS records.
    • Unlimited users, domains and domain groups ensure full coverage for email authentication.
    • A DMARC record setup wizard facilitates quick and simple record generator.
    • Optional managed services enable organizations to minimize risk and move to DMARC enforcement in the shortest possible time.
    Easy-to-use tools for SPF, DKIM and DMARC authentication

    More solutions from Mimecast

    DMARC Analyzer is part of a comprehensive suite of solutions for managing and protecting business email.

    • Mimecast Email Security with Targeted Threat Protection. Combining innovative applications and policies with multiple detection engines and intelligence feeds, Mimecast blocks threats such as spear-phishing, zero-day attacks, malware, spam, malicious URLs and attachments, and malware-less, social engineering-based attacks that attempt to spoof an email address and impersonate trusted senders.
    • Mimecast Information Protection provides automated Content Control and Data Loss Prevention (DLP) as well as tools that enable employees to send messages and large files securely and easily.
    • Mimecast Awareness Training offers highly engaging and successful education modules that help employees avoid the behavior and human error that is typically involved in more than 90% of all security breaches.
    • Mimecast Web Security adds monitoring and security at the DNS layer to identify and block malicious web activity, prevent access to business-inappropriate websites and monitor uncontrolled usage of cloud apps that represent shadow IT risks.
    • Mimecast Brand Exploit Protect helps safeguard brands from cyber criminals by running quadrillions of scans to identify domains and sites that may be attempting to impersonate a legitimate brand.
    More solutions from Mimecast

    FAQs: What is DKIM?

    What is DKIM?

    DKIM, or DomainKeys Identified Mail, is an email authentication method that uses a digital signature to let the receiver of an email know that the message was sent and authorized by the owner of a domain.

    What is a DKIM record?

    DKIM record is a line of text within the DNS record that contains the public key which receiving mail servers can used to authenticate the DKIM signature.

    What is a DKIM record check?

    A DKIM record check is a tool that tests the domain name and selector for a valid published DKIM record. Mimecast offers a free DKIM record checker that can validate DKIM records. Mimecast also offers a free SPF validator and free DMARC record checks.

    FAQs: What is DKIM?

    Expert Security Insights

    Additional security resources you may be interested in: