Updates 2015 DRAFT SP 800-177 DRAFT Trustworthy Email
DRAFT SP 800-177 DRAFT Trustworthy Email
September 28, 2015
NIST requests comments on Draft Special Publication (SP) 800-177, Trustworthy Email. This draft is a complimentary guide to NIST SP 800-45 Guidelines on Electronic Mail Security and covers protocol security technologies to secure email transactions. This draft guide includes recommendations for the deployment of domain-based authentication protocols for email as well as end-to-end cryptographic protection for email contents. Technologies recommended in support of core Simple Mail Transfer Protocol (SMTP) and the Domain Name System (DNS) include mechanisms for authenticating a sending domain (Sender Policy Framework (SPF), Domain Keys Identified Mail (DKIM) and Domain based Message Authentication, Reporting and Conformance (DMARC). Email content security is facilitated through encryption and authentication of message content using S/MIME and/or Transport Layer Security (TLS) with SMTP. This guide is written for the enterprise email administrator, information security specialists and network managers.
Deadline to submit comments is November 30, 2015.
Send comments to: SP800email@example.com
Created December 21, 2016, Updated April 26, 2017