1
0
Fork 0
mirror of https://git.sr.ht/~seirdy/seirdy.one synced 2024-12-25 18:22:09 +00:00
seirdy.one/content/notes/re-privacyguides-email-security.md
Rohan Kumar f33939444c
typo
2022-10-20 00:48:05 -07:00

882 B

title date replyURI replyTitle replyType replyAuthor replyAuthorType replyAuthorURI
Re: Privacy Guides email security 2022-10-20T00:35:50-07:00 https://www.privacyguides.org/basics/email-security/ Email Security TechArticle Privacy Guides Organization https://www.privacyguides.org/

Key management guides should also cover key distribution.

Secure distribution happens over at least two bands with two different sources of trust. Having my own domain name lets me combine DANE (trust the DNS trust anchors) and Web Key Directory (trust the WebPKI and CA system). Clients can fetch keys both ways and ensure they match. Prospective senders may also request public keys over modern encrypted messengers.

This guide covers the client side. Users need providers and name servers to adopt email security standards (DKIM, SPF, DMARC, ARC, DANE, MTA-STS).