2024-01-23: Published
2024-07-16: Modifications for supporting DKIM settings in any domain (adding links, etc.)
Many people have been harmed by spoofing emails in recent years. Therefore, email senders must have measures in place to prevent this*. The following sender domain authentication is a countermeasure against spoofing emails that can be implemented by email senders.
- SPF “Sender Policy Framework”
- Verified by the IP address of the source email server
- DKIM “DomainKeys Identified Mail”
- Digitally sign and validate outgoing emails
- DMARC “Domain-based Message Authentication, Reporting, and Conformance”
- Define countermeasures in case of SPF / DKIM authentication failure
*For example, Gmail has these guidelines
Gmail > Email sender guidelines
All senders are required to support SPF or DKIM, and in particular, senders who send more than 5,000 messages per day will be required to support both SPF and DKIM after February 1, 2024, the guidelines state.
Since it is not possible to send a large number of emails from Questetra, it is not expected to fall into this category of “senders who send more than 5,000 emails per day” in normal use.
Sender Domain Authentication in Questetra
In Questetra, emails can be sent using automated steps in the workflow. If the user does not set From address, it is set to “no-reply@s.questetra.net” by default.
In v15.2 (December 2023 to January 2024), DKIM signatures will be implemented with the questetra.net domain*, so emails will be sent with First Party Signature. On the other hand, if the From address is changed, the DKIM signature with the questetra.net domain will still be added, but it will be treated as a Third Party Signature. v15.2 does not support DKIM signature (First Party Signature) in an arbitrary domain specified by the user.
*In fact, the DKIM signature will be on the “s.questetra.net” domain. Also, in the trial version of workflow platform, From address is “no-reply@f.questetra.net” and the DKIM signature is in the f.questetra.net domain.
The SPF setting has been our recommendation for users who specify an email address as their From address when sending emails.
- Let`s Send an Email Automatically in the Middle of a Workflow (Address embed chapter)
- R2241: SPF Setting
In addition to the existing SPF and DKIM signatures whose domain is questetra.net, v16.0 scheduled for release in April 2024 will support DKIM in any domain specified by the user.
Specifically, Questetra users (system administrators) will be able to register the private key of the sender’s domain in workflow platform (Advanced Edition and above). This will allow DKIM signature (First Party Signature) to be carried out using the registered private key when an email which From address is set to the specified domain is sent. In addition, by properly configuring and operating SPF / DKIM, DMARC compliance will also be possible.
Support for DKIM on arbitrary domains is in the deployment verification phase in v15.2. If you would like to try it before its official release, or if you are willing to cooperate in its verification, please contact us through Inquiry Form.
(We need to communicate directly with the engineers who maintain the DNS and email servers in your company.)
Our commitment is to continuously develop and improve functions so that Questetra users can use workflow platform in a safe, secure, and convenient manner.