Skip Links

Network World

  • Social Web 
  • Email 
  • Close

Deploying antiphishing technology DKIM in 3 simple steps

By Carolyn Duffy Marsan , Network World , 02/11/2008

Experts say that a company needs to take three steps to deploy the emerging DomainKeys Identified Mail (DKIM) standard.

DKIM is an emerging e-mail authentication standard supported by Yahoo, Google and others and that was developed by the Internet Engineering Task Force. DKIM allows an organization to cryptographically sign outgoing e-mail to verify that it sent the message. Here are the three steps enterprises need to take to deploy DKIM:

1. Figure out all the domains that are allowed to send outbound mail on its behalf. Often this includes multiple corporate domains as well as third-party e-mail marketing companies.

2. Create DNS text records that include DKIM information for every domain that is used to send e-mail.

3. Upgrade all message transfer agents (MTA) -- either software or appliances -- to support DKIM. MTAs are the last component of a messaging system to touch outbound e-mail. That’s where DKIM signatures are attached.

The first step is the hardest, experts say.

``The greatest challenge of any deployment of DKIM is identifying all the domains I have and all the people sending mail on my behalf,’’ says Greg Olson, director of product management at Sendmail, which started shipping a DKIM-compliant e-mail appliance in November.

``The biggest issues are not technical. They’re operational and procedural. It’s knowing who can send mail on your behalf and managing that,’’ says Craig Spiezle, chairman of the Authentication and Online Trust Alliance. ``Right now, it’s very decentralized. There are a lot of organizations sending e-mail on a corporation’s behalf.’’

Large multinational corporations may have to upgrade a dozen or more e-mail appliances to support DKIM (see story on how DKIM is attacking e-mail fraud). But most vendors are offering DKIM as a plug-in or additional feature that’s part of a new version of the software. Experts say this upgrade is straightforward.

``I’m not aware of anyone who is charging extra for DKIM,’’ says Patrick Peterson, vice president of technology for IronPort, a Cisco-owned company whose e-mail appliances support DKIM. ``It’s just part of a regular upgrade.’’

Partner Content

Brilliantly simple security and control solutions for email, web and endpoint

www.sophos.com

Stopping data leakage

Learn how to exploit your current security investment to control the information that flows into, through and out of your network.

Download the white paper.

Why detection rates aren't enough

Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.

Download the white paper.

Applications: taking back control

Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.

Learn more today.

Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Videos

rssRss Feed

Whitepapers

Magic Quadrant for Application Delivery Controllers

Gartner summarizes its view on Application Delivery Controllers, evaluates strengths and weaknesses...

Vulnerability Management For Dummies

Download this concise book "Vulnerability Management for Dummies," to learn about the simple steps...

The ROI and TCO Benefits of Data Deduplication for Data Protection in the Enterprise

This paper examines and quantifies the costs and benefits of backup with deduplication storage as...

Webcasts

Transforming the Enterprise WAN Edge: Video from Cisco

Life on the edge of your WAN has changed dramatically. With the need to deliver advanced services,...

PoE Plus: Impact on the PoE Market

The standard for Power over Ethernet (PoE), IEEE Std. 802.3af(tm)-2003, advanced networking,...

Harnessing the power of communications to increase workplace performance

Due to the convergence of IT and telecommunications technologies, the business workplace has been...

Special Reports

The Evolution of Network Security

We have so many holes punched in our firewalls today that many industry insiders question the value...

The self-managed network

We aren't there yet, but advances in network and systems management tools are making it possible to...

Get instant email notification when white papers, webcasts, executive guides are added to our library. Stay informed and up-to-date with the latest on IT Technologies with Network World's Resource Alerts.