• Home

Email Security Webinar #5 about TLS and DANE

Copied from Zimbra.com

Many Zimbra administrators have setup TLS encryption to protect their users’ login credentials and email in transit.  But TLS is a complex standard, and often unknowingly misconfigured.  Deploying TLS correctly does not require a university degree in cryptography, but rather a working knowledge of some key concepts and awareness of pitfalls to avoid.

And, with the rapid success of free SSL certificate authorities (CAs) like Let’s Encrypt, financial barriers to ubiquitous use of encryption have vanished. The increasing ease of obtaining an SSL certificate from free and commercial CAs has magnified a long standing weakness with the CAs.  We trust the CAs to properly validate that SSL certificates are issued only to a domain name’s legitimate owner, but this trust has frequently been proven to be misplaced.  When a university student can obtain an SSL certificate for github.com, and an individual with no affiliation with Mozilla can obtain an SSL certificate for mozilla.com, how safe do you think your domain name is from SSL certificate fraud?

In this fifth episode of the Zimbra Email Security Webinar Series, join us for an overview of the most important information you need to know to use TLS encryption to protect your users effectively, and for a discussion of the risks of the current CA system, along with how you can use the DANE standard to assert unbreakable ownership and trust for your SSL certificates.



Here are the slides from the TLS/DANE webinar.

In case you missed any of the previous webinar episodes, they can be viewed here: https://www.youtube.com/playlist?list=PL-n95mpBtP2ZP4GVMR8B25np-Zwv7uRaA if you are interested we also uploaded the slide decks of the previous webinars.

Email Security Webinar #4 about DNSSEC

Copied from Zimbra.com

Zimbra’s Barry de Graaff and Randy Leiker from Skyway Networks team up for a webinar series focused on Email Security. These hands-on webinars will include practical how-to information and best practices to help you maximize Zimbra security.

In this fourth episode of the Zimbra Email Security Webinar Series, join us to learn how DNSSEC prevents DNS hijacking and forgeries by an adversary, preserving the trust and integrity of your DNS records. Included will be a step-by-step walk through of setting up a domain name with DNSSEC, along with best practices. DNSSEC is also a prerequisite for another important email security standard called DANE that will be discussed in an upcoming webinar series episode.



Here are the slides from the DNSSEC webinar.

In case you missed any of the previous webinar episodes, they can be viewed here: https://www.youtube.com/playlist?list=PL-n95mpBtP2ZP4GVMR8B25np-Zwv7uRaA

Email Security Webinar #3 about MTA-STS, TLS-RPT, and BIMI

Copied from Zimbra.com

Zimbra’s Barry de Graaff and Randy Leiker from Skyway Networks team up for a new webinar series focused on Email Security. These hands-on webinars will include practical how-to information and best practices to help you maximize Zimbra. Learn how to fine-tune key security standards like SPF, DKIM, DMARC, MTA-STS, TLS, DNSSEC, DANE and TLSA to create a nearly unbreakable chain of trust from email sender to email recipient, ensuring maximum integrity and confidentiality. The webinars will include best practices and how to avoid common roll-out pitfalls for each security standard. This third webinar focuses on MTA-STS, TLS-RPT, and BIMI.



If you’re interested, here is the slide deck from the webinar. Thanks, Your Zimbra Team

Email Security Webinar #2 about DMARC

Copied from Zimbra.com

Zimbra’s Barry de Graaff and Randy Leiker from Skyway Networks team up for a new webinar series focused on Email Security. These hands-on webinars will include practical how-to information and best practices to help you maximize Zimbra.

Learn how to fine-tune key security standards like SPF, DKIM, DMARC, MTA-STS, TLS, DNSSEC, DANE and TLSA to create a nearly unbreakable chain of trust from email sender to email recipient, ensuring maximum integrity and confidentiality. The webinars will include best practices and how to avoid common roll-out pitfalls for each security standard.

This second webinar focuses on email security and DMARC.



If you’re interested, here is the slide deck from the webinar.

Email Security Webinar #1 – SPF and DKIM

Copied from Zimbra.com…

Zimbra’s Barry de Graaff and Randy Leiker from Skyway Networks team up for a new webinar series focused on Email Security. These hands-on webinars will include practical how-to information and best practices to help you maximize Zimbra.

Learn how to fine-tune key security standards like SPF, DKIM, DMARC, MTA-STS, TLS, DNSSEC, DANE and TLSA to create a nearly unbreakable chain of trust from email sender to email recipient, ensuring maximum integrity and confidentiality. The webinars will include best practices and how to avoid common roll-out pitfalls for each security standard.

This first webinar focuses on email security and using SPF and DKIM.



If you’re interested, here is the slide deck from the webinar.