Skip to main content

Some big IT propose a more secure email system

The email communication is now used by several decades the system (just in recent weeks has shut down its creator, Ray Tomlinson, who in the early 70's has created the e-mail) and the transport to its core technology, the SMTP , was almost unchanged in over forty years.

Via SMTP most email is sent in plain text, unencrypted, a problem is not insignificant when you consider that today's email is exchanged private and commercial information of a certain confidentiality.

To try to solve this problem several years ago was created the SMTP mechanism SARTTLS, however, on which has enjoyed wide adoption also because of numerous flaws present in it, not least the inability to really ensure that messages sent were actually protected by encryption.

This technology offers even opens the way to a man-in-the-middle attacks, especially before an email is sent notifying the sender that there is no active SSL so that the client send the message unencrypted without warning .

A collaboration between engineers at Google, Yahoo, Comcast, Microsoft, LinkedIn and 1 & 1 Mail & Media has sent a proposal to the Internet Engineering Task Force that will solve this problem in a more robust fashion: it's SMTP HTTP Strict Transport Security which provides a control some items before the email is sent.

In particular, the sending client would go to check if the target server supports SMTP technology STS and if the certificate is valid and updated, so as to ensure that it established a communication channel with the correct server. If the controls were to fail, the message will not be sent and will be communicated to the user. The proposal, which is available here, contains numerous technical details for a possible practical implementation.

It is, for now, only a proposal that could also not find concrete application: the presence of some great web reality, however, bodes well for its possible implementation in a not too distant future.

Comments

Popular posts from this blog

Max Q: Psyche(d)

In this issue: SpaceX launches NASA asteroid mission, news from Relativity Space and more. © 2023 TechCrunch. All rights reserved. For personal use only. from TechCrunch https://ift.tt/h6Kjrde via IFTTT

Max Q: Anomalous

Hello and welcome back to Max Q! Last week wasn’t the most successful for spaceflight missions. We’ll get into that a bit more below. In this issue: First up, a botched launch from Virgin Orbit… …followed by one from ABL Space Systems News from Rocket Lab, World View and more Virgin Orbit’s botched launch highlights shaky financial future After Virgin Orbit’s launch failure last Monday, during which the mission experienced an  “anomaly” that prevented the rocket from reaching orbit, I went back over the company’s financials — and things aren’t looking good. For Virgin Orbit, this year has likely been completely turned on its head. The company was aiming for three launches this year, but everything will remain grounded until the cause of the anomaly has been identified and resolved. It’s unclear how long that will take, but likely at least three months. Add this delay to Virgin’s dwindling cash reserves and you have a foundation that’s suddenly much shakier than before. ...

What’s Stripe’s deal?

Welcome to  The Interchange ! If you received this in your inbox, thank you for signing up and your vote of confidence. If you’re reading this as a post on our site, sign up  here  so you can receive it directly in the future. Every week, I’ll take a look at the hottest fintech news of the previous week. This will include everything from funding rounds to trends to an analysis of a particular space to hot takes on a particular company or phenomenon. There’s a lot of fintech news out there and it’s my job to stay on top of it — and make sense of it — so you can stay in the know. —  Mary Ann Stripe eyes exit, reportedly tried raising at a lower valuation The big news in fintech this week revolved around payments giant Stripe . On January 26, my Equity Podcast co-host and overall amazingly talented reporter Natasha Mascarenhas and I teamed up to write about how Stripe had set a 12-month deadline for itself to go public, either through a direct listing or by pursuin...