Please use this identifier to cite or link to this item: http://hdl.handle.net/10125/41506

DANE Trusted Email for Supply Chain Management

File SizeFormat 
paper0357.pdf1.36 MBAdobe PDFView/Open

Item Summary

Title: DANE Trusted Email for Supply Chain Management
Authors: Gersch, Joseph
Massey, Dan
Rose, Scott
Keywords: DANE
eMail
security
spear-phishing
Issue Date: 04 Jan 2017
Abstract: Supply chain management is critically dependent on trusted email mechanisms that address forgery, confidentiality, and sender authenticity. The IETF protocol ‘Domain Authentication of Named Entities’ (DANE) described in this paper has been extended from its initial goal of providing TLS web site validation to also offer a foundation for globally scalable and interoperable email security. Widespread deployment of DANE will require more than raw technology standards, however. Workflow automation mechanisms will need to emerge in order to simplify the publishing and retrieval of cryptographic credentials that are applicable for general audiences. Security policy enforcement will also need to be addressed. This paper gives a descriptive tutorial of trusted email technologies, shows how DANE solves key distribution logistics, and then suggests desirable automation components that could accelerate deployment of DANE-based trusted email. Pilot deployments are briefly described.
Pages/Duration: 10 pages
URI/DOI: http://hdl.handle.net/10125/41506
ISBN: 978-0-9981331-0-2
DOI: 10.24251/HICSS.2017.350
Rights: Attribution-NonCommercial-NoDerivatives 4.0 International
Appears in Collections:Supply Chain Security and Mutual Trust Research Minitrack



Items in ScholarSpace are protected by copyright, with all rights reserved, unless otherwise indicated.