Final answer:
SPF and DKIM records are used to protect a domain from being wrongfully tagged as a source of email spam by authorizing legitimate mail servers and verifying the authenticity and integrity of the emails sent.
Step-by-step explanation:
The DNS records that are used to protect a domain from being wrongfully identified as a source of email spam are SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail). The SPF record is used to specify which mail servers are permitted to send email on behalf of your domain. It helps mail exchangers to verify that incoming mail from a domain comes from a host authorized by that domain's administrators. DKIM is an email authentication method that allows the receiver to check that an email claimed to have come from a particular domain was indeed authorized by the owner of that domain and has not been altered in transit. DKIM uses a pair of keys, one private and one public, to verify messages. The private key is used to digitally sign each outgoing message, and the corresponding public key is published in the DNS record for the sending domain, allowing recipient servers to verify the signature.