It states that while only the 21,075 emails marked with its green "
DKIM verified" banner are certified by WikiLeaks as genuine, it believes "based on statistical sampling" that the "overwhelming majority" of the remainder are also authentic.
76.9% of the emails we received are signed according to the (
DKIM) standard.
According to the report, more than 3.5 million domains that are active on a weekly basis use the SPF standard, when sending e-mail via SMTP servers, and nearly half-a-million e-mail sending and receiving domains that are active weekly adopted the
DKIM standards.
Technologies such as
DKIM and SPF already allow domain owners to vouch for mail sent in their name, but don't specify what to do with messages that fail the test.
In the new approach, companies would coordinate efforts at a massive scale to implement technologies for email authentication, SPF (Sender Policy Framework) and
DKIM (DomainKeys Identified Mail).
New security features in CanIt 7.0.8: CanIt now has built-in support for
DKIM (DomainKeys Identified Mail).
[1] Barry Leiba, Jim Fenton, "
DKIM : Using Digital Signatures for Domain Verification ", CEAS 2007--Fourth conference on Email and Anti-spam, pp 530-538 August 2007.
SpamAssassin provides a comprehensive set of features and support for methods and standards such as text based patterns, bayesian scoring, DNS based black and white lists,
DKIM and SPF sender authentication, and e-mail signature clearing houses.
The protocol DomainKeys or its newer cousin,
DKIM, is used to verify that a message actually came from the purported sender's domain--the part following the @ sign.
By using the SMTP server and a DomainKeys Identified Mail (
DKIM) authentication technique, the spammers can ensure that the email generated is more likely to get past conventional anti-spam filters.