Product Update

DKIM Signature

Carlyn Manly
2019-03-06
1 Min Read

DKIM (DomainKeys Identified Mail) is an internet standard used to detect forged sender addresses in email messages. This email authentication method is often used by organization to protect their email users from phishing and spam.

All email notifications that Xurrent generates are now signed with a DKIM-Signature email header. This can be verified in the raw source of an email notification generated by Xurrent by looking for dkim=pass.

For now, Xurrent’s DKIM domain, selector and keys are used for all outbound email that Xurrent generates. In the next release, this functionality will be expanded to allow each account to define their own DKIM domain, selector and keys.

An example of an email header with a DKIM-Signature looks like this:

Authentication-Results: mx.google.com;
       dkim=pass
header.i=@4me-demo.com header.s=default header.b=A3+wPyDZ;
       spf=pass (google.com: domain of
bounced.mailbox@itrp.com designates 184.72.240.72 as permitted sender) smtp.mailfrom=bounced.mailbox@itrp.com
[ … ]
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Xurrent.com; q=dns/txt; s=default; t=1550885929; bh=m4/PdWqIcLZZBw4CdKJTmaQXKpVlqXq+h0PISCoHs7s=; h=date:from:reply-to:to:message-id:subject:mime-version:content-type:content-transfer-encoding; b=A3+wPyDZGfOQM8gI5DuyOMKDJZOTyDSg7FYJJpOsaCxL0BXFSktu3/MMB+StjTsL/ogHoU3y8jgYli3sQtgBff0SDGbhNKtE7MYQKK5a6Da5sDlOWX/+XRSIvE0f+iiLoUUGY2cOGetO+gB6HZapIxNf+Pl2lmYEBI4rN9d2wZYL+1a4rtwcjUkOqWWaj6FFG5bx8eUBEzNfh0zzFdrndxfjWR9zMZnsdHRoFWzWSZGQ6mzYGVibwtbpsMx3bOzHVRrLAObTsCblkpWsRNoFF4KTfNtHFNnSKzPMALu+1mGhf//w77eQIwcrwUDEjfddvxAP6cpCzRYEMcKDrX+qVQ==
Date: Tue, 05 Mar 2019 01:38:49 +0000
From: Widget Service Desk
Reply-To: Widget Service Desk