DKIM is the technology that signs a message and some of its headers
at a mail server en route; mostly this is done by the originator of
the email. One problem remains that slows down its introduction as a
hard filter, and that is email handling that edits the message and then
forwards it, as is common for email lists. This article nails the
integration of DKIM with forwarding.
SPF is the technology that assures that mail only arrives from authentic
senders. One problem remains that slows down its introduction as a
hard filter, and that is email forwarding. This article nails the
integration of SPF with forwarding.
The TLS protocol is usually considered as a black box that somehow
bestows security. But like any other protocol, it is a sequence of
bits and bytes. This article explains how a bit more depth about the
protocol is helpful to understand how it can be split into two
dramatically different components; and how this can be incredibly useful
from an operational perspective.
In several places of the InternetWide Architecture, we use LDAP as our
data protocol — because it is the most refined standard protocol
for digging around in data. What we haven't yet discussed is how its
privacy compares to, say, HTTP.