Blacklistedip Logo
Home what is blacklist? Order Free Signup Support

Yahoo's DomainKeys

Yahoo's DomainKeys claims to give email providers a mechanism for verifying both the domain of each email sender and the integrity of the messages sent (i.e,. that they were not altered during transit). And, once the domain can be verified, it can be compared to the domain used by the sender in the From field of the message to detect forgeries. If it's a forgery, then its spam or fraud, and it can be dropped without impact to the user. If it's not a forgery, then the domain is known, and a persistent reputation profile can be established for that sending domain that can be attached to anti-spam policy systems, shared between service providers, and even exposed to the user.


How it Works - Sending Servers

There are two steps to signing an email with DomainKeys
SetSetup The domain owner (typically the team running the email systems within a company or service provider)Generates a public/private key pair to use for signing all outgoing messages (multiple key pairs are allowed). The public key is published in DNS, and the private key is made available to their DomainKey-enabled outbound email servers.

Signing When each email is sent by an authorized end-user within the domain, the DomainKey-enabled email system automatically uses the stored private key to generate a digital signature of the message. This signature is then pre-pended as a header to the email, and the email is sent on to the target recipient's mail server.


How it Works - Receiving Servers

There are three steps to verify a signed email
Preparing The DomainKeys-enabled receiving email system extracts the signature and claimed From domain from the email headers and fetches the public key from DNS for the claimed From domain.

Verifying The public key from DNS is then used by the receiving mail system to verify that the signature was generated by the matching private key. This proves that the email was truly sent by, and with the permission of, the claimed sending From domain and that its headers and content weren't altered during transfer.

Delivering The receiving email system applies local policies based on the results of the signature test. If the domain is verified and other anti-spam tests don't catch it, the email can be delivered to the user's inbox. If the signature fails to verify, or there isn't one, the email can be dropped, flagged, or quarantined.

 

 
Untitled Document
What is Blacklist?  
Types of Blacklist?
How did you land in a Blacklist?
How do Blacklists work?
Delisting from Blacklist? 
How to avoid Blacklist?
(Good email marketing strategy?)
Email Marketing Do's and Don'ts?
Whitelist?
SMTP?
Open Relay
Proposals offered to nip the spam bud?
Spam filters?
Spammer's notebook?
Synopsis of Can-Spam Act
Blacklist directory
FAQ
   Spam Blacklist | Email Deliverability | Black list | Blacklisted Domain | Email Blacklist
   IP Blacklisted | Privacy Statement | About Us | Terms of Use | FAQ | Resources | Sitemap
    copyright © 2008 Blacklistedip.com. All rights reserved.