SMTP Security via Opportunistic DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS), October 2015
- Canonical URL:
- File formats:
- PROPOSED STANDARD
- V. Dukhovni
- dane (sec)
Discuss this RFC: Send questions or comments to email@example.com
This memo describes a downgrade-resistant protocol for SMTP transport security between Message Transfer Agents (MTAs), based on the DNS-Based Authentication of Named Entities (DANE) TLSA DNS record. Adoption of this protocol enables an incremental transition of the Internet email backbone to one using encrypted and authenticated Transport Layer Security (TLS).
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 4844.