E-mail security at Skymail

Skymail protects your mailbox with modern transport encryption, DNS protection, signed messages and clear safeguards against spoofing, phishing and account abuse.

Create secure e-mail Premium without ads
DNSSEC, DANE and TLSA
SPF, DKIM and DMARC
MTA-STS and TLS-RPT
BSI Hall of Fame Gold
Security status Live
Transport protection Active
Sender DNSSEC TLS Mailbox
DNS manipulationblocked
Mail spoofingfiltered
TLS downgradeprevented
Certificate errormonitored

Security that starts before the message

Many attacks happen before a message ever reaches the mailbox. Skymail combines DNS, transport, sender and account protection into a robust security foundation.

DS
Secure DNS zone

DNSSEC protects skymail.de against manipulation, cache poisoning and forged delivery routes.

TLS
Transport encryption

DANE, TLSA, MTA-STS and Perfect Forward Secrecy harden the connection between mail servers.

ID
Sender checks

SPF, DKIM and DMARC reduce spoofing and make forged senders much harder to abuse.

24
Monitoring & reports

TLS-RPT and continuous checks help detect certificate and delivery problems early.

BSI Hall of Fame

Awarded Gold

Skymail was added to the Hall of Fame of the E-Mail Security initiative by Germany's Federal Office for Information Security together with eco and Bitkom.

  • Officially confirmed security level for modern e-mail communication.
  • Technical safeguards for DNS, transport, certificates and sender authentication.
  • Privacy-friendly operation focused on private content and secure delivery.
BSI Hall of Fame Gold certificate for Skymail.de

Technical controls at a glance

The key security features are active and work together: DNS integrity, authenticated senders, enforced encryption and reporting.

DNSSECActive

Protects the skymail.de DNS zone against manipulation and cache poisoning.

DANE / TLSAAvailable

Mail servers can validate TLS certificates through DNSSEC.

SPFActive

Defines which servers may send e-mail for skymail.de.

DKIMActive

Outgoing e-mails are digitally signed and verifiable.

DMARCActive

Policies against unauthenticated mail and phishing attempts.

MTA-STSActive

Enforces TLS encryption with compatible mail servers.

TLS-RPTActive

Reports about TLS errors and worldwide delivery problems.

PFSSupported

Every encrypted connection uses unique session keys.

SSL certificatesGlobalSign & LE

Trusted certificates for web and mail servers.

Technical security features are monitored automatically on a regular basis.

Account protection recommended
Passkeyphishing-resistant
2FAadditional approval
Trusted Devicecontrolled convenience
Recoverybackup access

Login protection for real accounts

Secure delivery is only one part of protection. Passkeys, two-factor approvals and cleanly managed trusted devices help against phishing, password theft and lost devices.

  • Set up a dedicated passkey for each device.
  • Enable trusted devices only on private, protected devices.
  • Remove old approvals immediately after a device change or loss.

Premium: less distraction, more privacy

Freemail remains free and ad-funded. With Skymail Premium you work without ads, with more focus and without tracking for ad delivery.

View plans Discover the app

Your secure e-mail address is waiting.

Secure, reliable and modern: start with Skymail for free and upgrade your mailbox to Premium whenever you need it.

Start now