Home  >  Dave Stork

Author: Dave Stork

31/07/2025

Why every organization should enable DANE

Inbound DANE is now several months available in Exchange Online and Outbound DANE has already been automatically active since years. Since a few months Azure DNS also supports DNSSEC, which is a prerequisite for DANE. For those organizations that have a full Microsoft stack, there are now no longer any showstoppers implementing DANE. And I think every organization should make...
Categories Compliance & Security/Exchange/Exchange Online/SMTP Comments: 0
12/02/2025

Exchange Online Transport Encryption: What You Need to Know from a Security Viewpoint

The Simple Mail Transfer Protocol (SMTP) is originally not secured by design, but there are many additional protocols added to improve security. One such protocol is Transport Layer Security (TLS) that encrypts the connections between mail servers aiming to prevent mail interception. This post discusses the different options with Exchange Online Transport Encryption. I warn you that some of the...
Categories Compliance & Security/Exchange Online/SMTP Comments: 0
29/01/2025

Why Opportunistic TLS and Mail Security Need Your Attention

Opportunistic TLS is the standard configuration for mail transport security on all Message Transfer Agents (MTA) and mail servers. Sending and receiving mail servers will negotiate with each other which encryption they both are able to use. The most secure connection both parties can handle will be used. This means that mail can sent out with no encryption at all....
Categories Compliance & Security/Exchange Online/SMTP Comments: 2