starttls Archives

Posts Tagged ‘starttls’

SMTP TLS: All About Secure Email Delivery over TLS

Monday, October 2nd, 2017

TLS stands for “Transport Layer Security” and is the successor of “SSL” (Secure Socket Layer). TLS is one of the standard ways that computers on the Internet transmit information over an encrypted channel. In general, when one computer connects to another computer and uses TLS, the following happens:

Computer A connects to Computer B (no security)
Computer B says “Hello” (no security)
Computer A says “Lets talk securely over TLS” (no security)
Computer A and B agree on how to do this (secure)
The rest of the conversation is encrypted (secure)

In particular:

The meat of the conversation is encrypted
Computer A can verify the identity of Computer B (by examining its SSL certificate, which is required for this dialog)
The conversation cannot be eavesdropped upon (without Computer A knowing)
The conversation cannot be modified by a third party
Other information cannot be injected into the conversation by third parties.

TLS (and SSL) is used for many different reasons on the Internet and helps make the Internet a more secure place, when used. One of the popular uses of TLS is with SMTP for transmitting email messages between servers in a secure manner. See also:

How Does Secure Socket Layer (SSL or TLS) Work?
The Case for Email Security (Why normal email is insecure)

Read the rest of this post »

Tags: AES256, opportunistic TLS, secure, smtp, smtp tls, ssl, ssl certificate, starttls, tls
Posted in AAA Featured Articles, LuxSci Library: HIPAA, LuxSci Library: Security and Privacy, Popular Posts
15 Comments »

How to Tell Who Supports SMTP TLS for Email Transmission

Tuesday, January 27th, 2015

SMTP TLS (Transport Layer Security) is the mechanism by which two email servers, when communicating, can automatically negotiate an encrypted channel between them so that the emails transmitted are secured from eavesdroppers.

It is becoming ever more important to use a company that supports TLS for email transmission as more and more banks, health care, and other organizations who have any kind of security policy are requiring their vendors and clients to use this type of encryption for emailed communications with them. Additionally, if your email provider supports TLS for email transmission, and you are communicating with people whose providers do also, then you can be reasonably sure that all of the email traffic between you and them will be encrypted.

How do you find out if someone to whom you are sending email uses a provider who’s servers support TLS-encrypted communications? We will take you through the whole process step-by-step, but first let us note some 6 important truths about TLS connection encryption.

Read the rest of this post »

Tags: dig, dns, ehlo, mx records, nslookup, smtp, smtp connection, starttls, tls, tls support
Posted in LuxSci Library: Security and Privacy, Popular Posts
4 Comments »

Posts Tagged ‘starttls’

SMTP TLS: All About Secure Email Delivery over TLS

How to Tell Who Supports SMTP TLS for Email Transmission

Search the Blog

Follow the Blog

Subscribe

Categories