1
0
Fork 0
mirror of https://git.sr.ht/~seirdy/seirdy.one synced 2024-12-28 11:02:10 +00:00

New note: privacyguides email

This commit is contained in:
Rohan Kumar 2022-10-20 00:35:50 -07:00
parent 706d056fe4
commit 211dd4fb1f
No known key found for this signature in database
GPG key ID: 1E892DB2A5F84479

View file

@ -0,0 +1,16 @@
---
title: "Re: Privacy Guides email security"
date: 2022-10-20T00:35:50-07:00
replyURI: "https://www.privacyguides.org/basics/email-security/"
replyTitle: "Email Security"
replyType: "TechArticle"
replyAuthor: "Privacy Guides"
replyAuthorType: "Organization"
replyAuthorURI: "https://www.privacyguides.org/"
---
Key management guides should also cover key distribution.
Secure distribution happens over at least two bands with two different sources of trust. Having my own domain name lets me combining DANE (trust the DNS trust anchors) and Web Key Directory (trust the WebPKI and CA system). Clients can fetch keys both ways and ensure they match. Prospective senders may also request public keys over modern encrypted messengers.
This guide covers the client side. Users need providers and name servers to adopt email security standards (DKIM, SPF, DMARC, ARC, DANE, MTA-STS).