Donate
‹ Back
Deploy360 19 June 2014

Video: DANEs Don’t Lie – DANE/SMTP (RIPE 68)

How can we secure communications between SMTP mail servers? Simply using TLS between servers will not prevent Man In The Middle(MITM) attacks. DNSSEC and DANE to the rescue! Using DANE, SMTP servers can validate X.509 certificates tied to TLS using DNSSEC lookups. In this lightning talk from Carsten Strotmann, learn how this all works and the current status of implementations. His talk, entitled “DANEs don’t lie – DANE/SMTP” is now available for viewing from the RIPE 68 site, and the slides are available for download.

CarstenStrotmannDANEsDontLie

After watching, check out our resources on DNSSEC and DANE.

‹ Back

Related articles

More DANE / DNSSEC / TLS Testing From Go6lab
Deploy3609 June 2015

More DANE / DNSSEC / TLS Testing From Go6lab

After we successfully implemented DANE for email server in Go6lab - we thought of doing a small experiment. Who else...

Testing DANE For Sending Secure Email at the Go6lab
Deploy36028 May 2015

Testing DANE For Sending Secure Email at the Go6lab

After successful DNSSEC signing of go6.si, go6lab.si, zorz.si and other domains in Go6lab we decided that it was time to...

Call For Proposals: DNSSEC Workshop at ICANN 51 in L.A. on October 15, 2014
Deploy36030 July 2014

Call For Proposals: DNSSEC Workshop at ICANN 51 in L.A. on October 15, 2014

Do you have an idea for a better way to work with DNSSEC?  Have you created a new tool or...

Join the conversation with Internet Society members around the world