[Ach] Secure E-Mail Transport based on DNSSec/TLSA/DANE

Gunnar Haslinger gh.bettercrypto at hitco.at
Fri Nov 6 17:55:01 CET 2015

I just updated my document (https://it-sec.ovh/secure-mail ).
All planned content is now covered.
Feedback is still highly welcome.


Am 01.11.2015 um 12:21 schrieb Gunnar Haslinger:
> As I spent the last weekends figuring out how DNSSec, BIND, Postfix ...
> work together and should be configured to build a Secure E-Mail
> Transport based on DANE, I'm looking forward to attend this workshop.
> I wrote a practically oriented paper about this topic.
> It's still in work - so status is "Draft"!
> And sorry - it't written in german, but as I know many of you come from
> the german speaking part of europe maybe there is somebody interested in.
> I uploaded the paper here:
> https://it-sec.ovh/secure-mail
> FYI: The Domain "it-sec.ovh" is just a DNSSec enabled Demo-Domain used
> for implementing a Secure E-Mail Transport based on DANE, if somebody
> likes to test his/her system against mine you are welcome to do so.
> Feedback regarding my paper is highly welcome.

More information about the Ach mailing list