kraken.com email security: SPF, DKIM & DMARC
Is kraken.com spoofable? See kraken.com's SPF, DKIM, DMARC and MTA-STS records and find out if this domain is protected against email spoofing.
Last updated: June 3, 2026
SPF
OKv=spf1 include:_spf.google.com include:mail.zendesk.com include:mailgun.org -allDKIM
OKSelectors: google, zendesk1, zendesk2DMARC
OKv=DMARC1; p=reject; sp=reject; pct=100; adkim=r; aspf=s; fo=1; rua=mailto:dmarc-rua@kraken.com; ruf=mailto:dmarc-ruf@kraken.comMX
OKsmtp.google.comRecommendations
1Add MTA-STS to enforce TLS encryption for incoming emails
Without MTA-STS, an attacker performing a man-in-the-middle attack can downgrade the connection between mail servers to plaintext, intercepting emails in transit. MTA-STS tells sending servers to only deliver via TLS with a valid certificate, preventing downgrade attacks.
Run a live analysis
The results above are updated daily. For an instant check of kraken.com, run a live analysis.
Analyze kraken.com liveFrequently asked questions about kraken.com
Is kraken.com spoofable?
No. kraken.com is protected against email spoofing with a robust configuration. Email security score: 90/100 (grade A).
Does kraken.com have an SPF record?
Yes, kraken.com publishes an SPF record (-all qualifier).
What is kraken.com's DMARC record?
kraken.com publishes a DMARC record (_dmarc.kraken.com) with a p=reject policy.
Does kraken.com use DKIM?
Yes, DKIM signatures were detected for kraken.com.
Want to test another domain? Run a free email spoofing test.
Guides to understand these results
SPF Guide
Understand how SPF defines which servers are authorized to send emails for a domain.
DKIM Guide
Discover how DKIM cryptographically signs your emails to guarantee their authenticity.
DMARC Guide
Learn how DMARC orchestrates SPF and DKIM to protect your domain.
MTA-STS Guide
Learn how MTA-STS enforces TLS encryption to protect your emails in transit.
SPF vs DKIM vs DMARC
Compare the three protocols and understand how they work together.