Email authentication helps verify that messages actually come from who they claim to be. BlueMail checks three important authentication methods: SPF, DKIM, and DMARC to help protect you from spoofed or forged emails.
What Is Email Authentication?
Email authentication protocols help prevent spam, phishing, and email spoofing by verifying that an email is genuinely sent from the domain it claims to be from.
SPF (Sender Policy Framework)
SPF allows domain owners to specify which mail servers are authorized to send email on behalf of their domain. When you receive an email, the receiving server checks if it came from an approved server listed in the sender's SPF record.
DKIM (DomainKeys Identified Mail)
DKIM adds a digital signature to outgoing emails. This signature is verified against a public key published in the sender's DNS records, ensuring the email hasn't been tampered with during transit.
DMARC (Domain-based Message Authentication, Reporting, and Conformance)
DMARC builds on SPF and DKIM by telling receiving servers what to do if an email fails authentication checks. It also provides reporting so domain owners can monitor and protect against email abuse.
How BlueMail Uses Authentication
BlueMail automatically checks incoming emails against these authentication protocols. When an email fails authentication checks, it may indicate:
- The sender's identity cannot be verified
- The email might be spoofed or forged
- The message could be from a phishing attempt
- The domain's security settings are improperly configured
BlueMail displays authentication status to help you identify potentially suspicious messages and make informed decisions about email safety.
Viewing Authentication Status
To see email authentication details in BlueMail:
Settings → Privacy & Security → Screener → Email Authentication Check
This feature helps protect you by flagging emails that fail authentication checks, giving you an extra layer of security against fraudulent messages.