starttls-everywhere icon indicating copy to clipboard operation
starttls-everywhere copied to clipboard
verified publisher icon EFForg

Future transition to IETF MTA-MTA security standards and supporting DEEP

Open azet opened this issue 9 years ago • 1 comments

Hi,

There's currently a lot of work being done within UTA ("Utilising TLS in applications" - https://datatracker.ietf.org/wg/uta/documents) regarding mail security.

Strong contenders are:

  • SMTP-STS (to be splitted into multiple documents)
  • DEEP (MUA-MTA)

These standards are being actively worked on and aren't finished yet. They will be by around end of the year. Once they are RFCs and implemented in software, we should support these. Hence: we need to start thinking now about how we transition users from our current approach to these new security standards once they're deployment-ready.

I'm looking for comments, especially from @pde as he's intimately familiar with Certbot.

Aaron

azet avatar Apr 29 '16 07:04 azet

There's a great comment by @jgillula on #88 about what we think re: transitioning to MTA-STS support.

Once they are RFCs and implemented in software, we should support these.

Although they're RFCs now, they're not yet implemented in software, with no clear timelines from major email providers and no strong commitments from Postfix or Exim either.

sydneyli avatar Nov 03 '18 00:11 sydneyli