Skip to main content
Glossary

SPF/DKIM

SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) are email authentication protocols that verify the sender's identity and prevent email spoofing and phishing.

What Are SPF and DKIM?

SPF and DKIM are complementary email authentication protocols designed to verify that an email was actually sent by the domain it claims to be from. Together with DMARC (Domain-based Message Authentication, Reporting, and Conformance), they form the foundation of modern email security, helping receiving mail servers distinguish legitimate messages from spoofed ones.

SPF (Sender Policy Framework)

SPF allows a domain owner to publish a DNS TXT record listing the IP addresses and servers authorized to send email on behalf of that domain. When a receiving mail server gets a message claiming to be from example.com, it checks the SPF record for example.com to see if the sending server's IP is authorized. If the IP is not in the SPF record, the message may be flagged as suspicious or rejected entirely. SPF prevents attackers from sending emails that appear to come from your domain using unauthorized servers.

DKIM (DomainKeys Identified Mail)

DKIM adds a cryptographic signature to outgoing emails. The sending server signs the message headers (and optionally the body) with a private key, and the corresponding public key is published in a DNS TXT record. The receiving server retrieves the public key, verifies the signature, and confirms that the message was not altered in transit. DKIM provides both authenticity (the message came from the claimed domain) and integrity (the message was not modified).

Why SPF/DKIM Matter

Without SPF and DKIM, attackers can easily spoof your domain to send phishing emails, which could be used for credential stealing or delivering malware. These protocols also directly impact email deliverability: messages that fail authentication checks are more likely to be flagged as spam by major email providers. For platforms that rely on email verification as part of their security pipeline, ensuring that outbound verification emails pass SPF/DKIM checks is essential for a smooth user experience.

SPF/DKIM in the Broader Security Context

Email authentication is one piece of a comprehensive security posture. AntiProxies focuses on the network and identity layers, detecting proxies, VPNs, disposable emails, and other threat signals. When combined with properly configured SPF/DKIM and robust email verification, your platform is protected both at the point of user registration and in ongoing email communications, creating a security chain that is difficult for attackers to break.

Related Terms

Email Verification Disposable Email Credential Stuffing Account Takeover
All glossary terms

Want to see what's in the database?

Download once, query as many times as you need. €99/year for all 22 databases, unlimited servers, and a full year of monthly updates. No usage limits, no per-query fees, no data leaving your servers.

View Pricing Contact Us
30-day money-back guarantee
All databases included
Monthly updates