DANE DNSSEC Email Security Planning
Microsoft have released support for DANE and DNSSEC to improve the email security of your M365 registered email domains. DANE with DNSSEC will help protect your email domains against man-in-the-middle attacks. Enable DANE support now to further protect your email system from malicious cyber attack.
DANE Definition
DANE stands for DNS-based Authentication of Named Entities, and is covered by RFC 6698 here https://datatracker.ietf.org/doc/html/rfc6698.
Enable DANE DNSSEC
It is recommended to enable the provided DANE DNSSEC email security for all your M365 Exchange Online registered email domains. Preferably you will use this opportunity to review your SPF, DKIM and DMARC settings to ensure each of these email authentication controls are being fully utilized.
Email Forensics and DANE DNSSEC
DANE DNSSEC can also play a part if expert email witness services are needed for a court case. We recommend contacting the team at globalemailforensics.com if you need email forensic witness help for your court action.
Enabling DANE DNSSEC SMTP support for all your email domains is relatively easy. Recommend to follow the DANE DNSSEC SMTP support guide here: https://office365migrate.com/dane-smtp-for-exchange-online/
Summary | DANE Support for Email
If you need help enabling DANE DNSSEC SMTP support then please Contact Us today. Your email security compliance will take a step up if you have fully enabled SPF, DKIM, DMARC, and DANE DNSSEC SMTP.
If you need an Office 365 migration expert to help you move off Microsoft Exchange, then we recommend the team at office365migrate.com.
Leave a Reply