DomainKeys Identified Mail, or DKIM, is a system for validating the genuineness of an email using an e-signature. When DomainKeys Identified Mail is activated for a specific domain, a public encryption key is published to the global DNS database and a private one is stored on the email server. When a new email is sent, a signature is issued using the private key and when the email message is delivered, the signature is ‘scanned’ by the incoming POP3/IMAP server using the public key. In this way, the receiver can easily discern if the email is genuine or if the sender’s address has been spoofed. A discrepancy will occur if the content of the email message has been changed on its way as well, so DomainKeys Identified Mail can also be used to make sure that the sent and the delivered emails are identical and that nothing has been added or removed. This authentication system will increase your email safety, as you can confirm the legitimacy of the important emails that you receive and your colleagues can do the same with the messages that you send them. Depending on the particular email provider’s policy, an email that fails the test may be removed or may be delivered to the recipient’s inbox with a warning flag.