7
0
Fork 0
This repository has been archived on 2024-10-15. You can view files and clone it, but cannot push or open issues or pull requests.
fediversity_website_archive/content/evenementen/nluug/najaarsconferentie-2021/talks/dennis-baaten-internetnl-en-dane-for-smtp.md
2023-06-24 16:04:22 +02:00

1.3 KiB
Raw Blame History

categories date description layout slug tags title speakers presentation recording
2021-11-11T13:31:43+02:00 event-talk Dennis Baaten - Internet.nl & DANE for SMTP
dennis-baaten
filename
platform url
youtube https://www.youtube.com/watch?v=Pl5GseddzE8

Abstract

Historically, SMTP servers exchange emails using either an unencrypted (plaintext) connection or (since 2002) an encrypted connection based on the opportunistic STARTTLS protocol. At the same time SMTP servers, by design, did not validate the authenticity of another email servers certificate; any random certificate were accepted. In short; confidentiality and integrity of (public) email transport cannot be guaranteed without taking extra measures. This is where DANE for SMTP comes in, as it enables email servers to determine up front whether or not another SMTP server supports an encrypted connection, while also providing the means of validating the authenticity of the other email servers certificate.

Biography

Dennis Baaten is a freelance security consultant and ethical hacker. He works for the Dutch Internet Standards Platform where he operates the support desk of Internet.nl, contributes to the development of the internet.nl platform, and creates technical how-to guides on implementing secure Internet standards.