SPF allows domain owners to specify which IP addresses are authorized to send emails on behalf of their domain. DKIM adds a digital signature to each outgoing email, enabling the recipient's server to verify the authenticity of the email. DMARC builds on SPF and DKIM by providing a mechanism for domain owners to publish policies on how to handle emails that fail authentication checks.