SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) are email authentication protocols designed to combat email spoofing. SPF enables domain owners to specify which mail servers are authorized to send emails on their behalf by publishing this information in DNS records. When a receiving server gets an email, it checks the SPF record to verify the sender’s legitimacy. DKIM, on the other hand, uses cryptographic signatures added to email headers. The receiving server validates this signature using the public key published in the sender’s DNS records, ensuring the message hasn’t been altered and confirming its origin. Together, SPF and DKIM help prevent phishing attacks, reduce spam, and build trust in email communications by making it harder for malicious actors to forge sender addresses.