Reply to post: opportunity

In non-startling news, EFF says STARTTLS email crypto is mostly done wrong

john.jones.name

opportunity

what this should be about is DANE

https://tools.ietf.org/html/rfc7671

If people deploy this then things get a lot easier and trustworthy in TLS...

The bonus is that its not tied to a Certificate Authority (CA) if you don't want it to be, which most mail servers is a good thing as they often have self certified certificates and if you have a Certificate from a CA then hey use it and declare it via DANE...

https://www.ncsc.nl/english/current-topics/factsheets/factsheet-secure-the-connections-of-mail-servers.html

you can test here : https://www.internet.nl/test-mail/

strangely the dutch security service demand this as a secure channel I wonder what they know (-;

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2021