Internet Technologies 19 June 2014

Video: DANEs Don’t Lie – DANE/SMTP (RIPE 68)

Andrew Mcconachie
By Andrew McconachieFormer Intern

How can we secure communications between SMTP mail servers? Simply using TLS between servers will not prevent Man In The Middle(MITM) attacks. DNSSEC and DANE to the rescue! Using DANE, SMTP servers can validate X.509 certificates tied to TLS using DNSSEC lookups. In this lightning talk from Carsten Strotmann, learn how this all works and the current status of implementations. His talk, entitled “DANEs don’t lie – DANE/SMTP” is now available for viewing from the RIPE 68 site, and the slides are available for download.

CarstenStrotmannDANEsDontLie

After watching, check out our resources on DNSSEC and DANE.

Internet Technologies, To archive, Europe,

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Recent Posts

Related Posts

Open Internet Standards 21 May 2026

On Global Accessibility Awareness Day, An Internet for Everyone Must Include Everyone 

Today, 21 May, marks the 15th Global Accessibility Awareness Day (GAAD)–a day dedicated to getting everyone talking, thinking, and learning about...

Internet Policy 3 April 2026

DNS Blocking: Mind the Unintended Consequences

As DNS blocking mandates multiply, so do concerns about security, the openness of the Internet, and fragmentation.

Rebuilding Trust 16 January 2025

Today’s US Executive Order is a Serious Win for Cybersecurity

The United States government is taking a major leap forward for cybersecurity. The newly released Executive Order on Strengthening and...