DomainKeys Identified Mail (DKIM) Signatures

DomainKeys Identified Mail (DKIM) permits a person, role, or organization that owns the signing domain to claim some responsibility for a message by associating the domain with the message. This can be an author's organization, an operational relay, or one of their agents. DKIM separates the question of the identity of the Signer of the message from the purported author of the message. Assertion of responsibility is validated through a cryptographic signature and by querying the Signer's domain directly to retrieve the appropriate public key. Message transit from author to recipient is through relays that typically make no substantive change to the message content and thus preserve the DKIM signature. This memo obsoletes RFC 4871 and RFC 5672. [STANDARDS-TRACK]

[1]  Sandy Murphy,et al.  Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted , 1995, RFC.

[2]  Nathaniel S. Borenstein,et al.  Multipurpose Internet Mail Extensions (MIME) Part One: Format of Internet Message Bodies , 1996, RFC.

[3]  Keith Moore MIME (Multipurpose Internet Mail Extensions) Part Three: Message Header Extensions for Non-ASCII Text , 1996, RFC.

[4]  Scott O. Bradner,et al.  Key words for use in RFCs to Indicate Requirement Levels , 1997, RFC.

[5]  Dave Crocker,et al.  Augmented BNF for Syntax Specifications: ABNF , 1997, RFC.

[6]  Thomas Narten,et al.  Guidelines for Writing an IANA Considerations Section in RFCs , 1998, RFC.

[7]  Blake Ramsdell,et al.  S/MIME Version 3 Message Specification , 1999, RFC.

[8]  John C. Klensin,et al.  Simple Mail Transfer Protocol , 2001, RFC.

[9]  Peter W. Resnick,et al.  Internet Message Format , 2001, RFC.

[10]  Jakob Jonsson,et al.  Public-Key Cryptography Standards (PKCS) #1: RSA Cryptography Specifications Version 2.1 , 2003, RFC.

[11]  Paul E. Hoffman,et al.  Internationalizing Domain Names in Applications (IDNA) , 2003, RFC.

[12]  Derek Atkins,et al.  Threat Analysis of the Domain Name System (DNS) , 2004, RFC.

[13]  Paul E. Hoffman,et al.  Determining Strengths For Public Keys Used For Exchanging Symmetric Keys , 2004, RFC.

[14]  Jeffrey C. Mogul,et al.  Registration Procedures for Message Header Fields , 2004, RFC.

[15]  Scott Rose,et al.  DNS Security Introduction and Requirements , 2005, RFC.

[16]  Jim Fenton,et al.  Analysis of Threats Motivating DomainKeys Identified Mail (DKIM) , 2006, RFC.

[17]  Mark Delany,et al.  Domain-Based Email Authentication Using Public Keys Advertised in the DNS (DomainKeys) , 2007, RFC.

[18]  David Shaw,et al.  OpenPGP Message Format , 1998, RFC.

[19]  Billy Bob Brumley,et al.  Remote Timing Attacks Are Still Practical , 2011, ESORICS.