News

Mail provider simplifies pgp key management via dns server

By admin
Spread the love

The German mail provider Mail.de is the first worldwide to switch to the use of Openpgpkey. With this standard, exchanging pgp public keys is done via dnssec, which would make it easier and more secure.

Mail.de, a German provider of secure e-mail services, reports making it possible to exchange PGP public keys via DNS servers. Mail.de, which provides both free mailboxes with advertising and paid subscriptions, uses the Anycast-dns network of the German provider irondns.

The problem with exchanging PGP public keys is that there is no standardized, trusted method. There are key servers that work on the basis of the HTTP Keyserver Protocol, but they do nothing more than store and publish keys. There is no form of validation and users must take steps beforehand to ensure that they can revoke their keys, otherwise this is no longer possible.

To create a standardized and secure alternative to linking email address and public pgp key, an IETF specification called Openpgpkey has been developed that uses dns resource record types. The dns rr type is protected via dnssec.

The advantage of Openpgpkey, according to Mail.de, is that only owners of an email address can add a public key, the key cannot be manipulated via a man-in-the-middle attack, users can easily delete and change their keys and the database with keys is not susceptible to abuse by spammers.

You might also like
News

Rumor: Apple is working on its own applications based on a large language model

News

EU Council determines position on security requirements for digital products

News

Zeeland power grid is full, grid operator stops new requests from major consumers

News

Igor’s Lab shares specs LGA1851 socket Arrow Lake: PCIe 5.0 SSDs and more pins

News

Sony and Microsoft sign agreement to keep Call of Duty on PlayStation

News

Xbox Community CEO Larry ‘Major Nelson’ Hryb is leaving Microsoft after…