(sorry if you get multiple copies)
The National Cybersecurity Center of Excellence (NCCoE) and NIST have a
new Special Publication: 1800-6 on DNS-Based Secure Email out for public
comment. This project was to develop guidance and recommendations for
enterprises in deploying DANE to support SMTP over TLS and S/MIME using
SMIMEA RRs. The three part guide is on the NCCoE website:
https://nccoe.nist.gov/projects/building_blocks/secured_email
In short - the project was to demonstrate using DANE to support SMTP and
S/MIME using different certificate usage values (used 1-3, skipped 0
since it was viewed as least likely to be recommended). The cert usage
values were chosen to give examples that would meet various local
security polices.
Comments welcome. The deadline for comments is Dec 15, 2016 but will
likely still be open to suggestions and comments (informally) beyond
that date.
Thanks,
Scott
==================================
Scott Rose, NIST
[email protected]
ph: +1-301-975-8439
Google Voice: +1-571-249-3671
_______________________________________________
dane mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dane
