(800) 441-6612    |    +1 (339) 368-5641
LuxSciLuxSci
Secure Email,
Web and Form Solutions
Phone: 800-441-6612
sales@luxsci.com
support@luxsci.com

DKIM Overview

DKIM is a method for verifying that an email is indeed being sent from the domain it claims to be from. To accomplish this verification a public/private pair of encryption keys is used. The most notable use of public/private key pairs in email is with S/MIME or PGP for encrypting an email itself. Outside of email anyone who browses the web has benefitted from public/private key pairs, as they are used to establish the SSL-encrypted connection of any reputable website for things like entering payment information securely.

With DKIM, a special signiture string is created from the private key, the message body, and some of the headers from within the email you are sending. The recipient's server then uses the public key to verify the signature was created using the matching private key. Since the private key is on your server, and has not been shared with anyone, only email sent from your server with the correct private key will pass this test.

Based on options of your choosing, messages can then be completely denied as invalid or let through (possibly to a separate folder) for reveiw before deciding it is unwanted email.

For DKIM to work properly your email servers need to be setup for signing outbound email and verifying inbound email, which is presicely what we have done here at LuxSci.

Outbound
Outbound DKIM uses the private key for you domain to create the signature for each email you send. The signature itself is then placed within the headers of the email.
Inbound
For inbound email we first verify whether or not the senders domain is setup to use DKIM and if so we then verify the existence and validity of a signature. For domains using DKIM our basic spam filters are setup to automatically use the signature results in determining if a message should be considered spam or not. Finally we also provide a field in our custom email filters so they can be used for additional control of your email flow based on the success/failure of the DKIM signature of a message.

Your provider's support/implementation of DKIM may differ from ours, but you can still use this DKIM generator to create the needed keys and generate the appropriate text needed for updating your DNS text records to use DKIM for your domain's email. The private key would have to be added to your server by your email provider

DKIM Generator

You will need to enter a selector and your domain below. A selector can be just about anything you want it to be. If you are not aware of how you can fully utilize selectors you can just use "dkim" as your selector.

Selector Domain Encryption

Please type the text seen in the image, below, into the "Security Code" box.

Security Code:

The security code is the text that you see in the image, above. Use of this code helps us prevent abuse of this form by automated programs.


Will All Messages be Signed?

No or Unknown: Messages sent from addresses in your domain may or may not be signed with DKIM; some legitimate messages may originate from servers that do not support DKIM for your domain. If you are unsure, choose this option.

Yes! All messages sent from addresses in your domain will be signed with DKIM; messages will never be sent from servers that do not support DXIM for your domain. Messages without valid signatures may be spam/fraud.

Yes! And, if a message arrives without a valid signature, it should absolutely be considered spam/fraud and deleted.

Starts under $10/mo

"The transition from our old Exchange server to LuxSci went very well. Users are happy with the webmail interface and the performance. We certainly appreciate the very helpful and prompt support of all of you guys at the help desk. Part of the sale to our management was the excellent availability of quality support. Thanks."

—Rick Buccheri, Patuxent Companies

Security Certifications TRUSTe EU Safe Harbor Thawte Extended Validation SSL Certificate McAfee Secure Authorize.net Merchant
• Access Anywhere
• Fast and Robust
• Super Secure
• Tons of Features
• Customizable
• Mobile Friendly

Send and receive email from your favorite programs, including:

 Microsoft Outlook
 Mozilla Thunderbird
 Apple Mail
 Windows Mail

... Virtually any program that supports POP, IMAP, or SMTP

Keep your email, contacts, and calendars in sync:

 Apple iPhone and iPad
 Android Devices
 BlackBerry
 Windows Phone

... Any device with Exchange ActiveSync (EAS) support

Relay your server's mail through LuxSci via smarthost:

• Resolve issues with ISP sending limits and restrictions
• Improve deliverability with better IP reputation and IP masking
• Take advantage of Email Archival and HIPAA Compliance
• Even setup smarthosting from Google Apps!

Free web site hosting with any email account:

• Start with up to 10 web sites and MySQL databases
• DNS services for one domain included
• Tons of features and fully HIPAA capable

LuxSci's focus on security and privacy:

• Read The Case for Email Security
• Read Mitigating Security & Privacy Threats
• Review our Privacy Policy

The most accurate, flexible, and trusted filters in the business:

• Premium protection with Intel Security Saas
• Realtime virus database guards against the latest threats
• Seven-day quarantine lets you put eyes on every filtered email
• Supplement with our Basic Spam Filter for even more features

End-to-end secure email encryption — to anyone, from anyone:

• No setup required — encryption is automatic and easy to use
• Secure outbound email with TLS, PGP, S/MIME, or Escrow
• Free inbound encryption via our SecureSend portal
• Independent of your recipient's level of email security
• Widely compatible and fully HIPAA Compliant

Add an extra layer of security with an SSL Certificate:

• Secure your web site
• Debrand LuxSci WebMail with your own secure domain
• Access secure email services via your own secure domain

Encrypt your service traffic via secure tunnel:

• Add another layer of security to your SSL connections
• WebMail, POP, IMAP, SMTP, web/database access
• SecureForm posts, SecureLine Escrow, SecureSend access
• Restrict your account to VPN access only

Secure long-term message archival:

• Immutable, tamperproof email retention with audit trails
• No system requirements — minimal setup, even less upkeep
• Realtime archival of all inbound and outbound messages
• Works anywhere — even with non-LuxSci email hosting

Free data backups included with all email hosting accounts:

• Automatic backups of all email, WebAides, web/database data
• Seven daily backups and up to four weekly backups
• Unlimited restores included at no additional cost
• Custom backup schedules for dedicated servers

Automate your email management:

• Save messages to specific folders or to LuxSci WebAides
• Advanced text scanning with regular expressions
• Tag messages, alter subject lines, or add custom headers
• Filter by message charset, type, TLS status, DKIM status
• Chain filters together for even more complex actions

• Bulk add and edit users, aliases and more
• Control sharing and access globally or on a granular level
• Delegate user roles through permissions
• Configure account-wide taglines, sending restrictions, and more
• Remotely administer account via SOAP API

Share, collaborate, organize, synchronize:

• Calendars, Contacts, Documents, Notes, Widgets, Workspaces
• Fine-grained access control and security
• Access anywhere via secure web portal or smartphone
• Save over solutions like Microsoft Exchange

Free folder sharing for all email hosting accounts:

• Share mail folders with other users in your account
• Subscribe to only the folders you want to see
• Set read-only or read-write access control
• View all personal and shared folders via unified web interface

Color code and label your email messages:

• Define and assign multiple IMAP keywords to each message
• Filter, search, and sort by tags
• Compatible and synchronizes with any IMAP email client
• Also usable with WebAide entries