The TES (Trusted Email Services) project is an open, non-commercial industry effort to raise awareness around current email security threats and promote the deployment of technologies to address them, particularly cryptographic techniques to secure the submission, transport and storage of E-mail messages over the Internet using the DNS root as the trust anchor.
The project specifically targets, as a primary audience, the ISPs, telecom and hosting companies in each country, organizing a series of round-table meetings where product owners and technical experts responsible for E-mail can take part in a meaningful conversation; ideally, these companies are best suited to build the critical mass that would prompt general adoption of any new practice.
The project was initiated in Autumn 2015 by Open-Xchange, the maker of Dovecot, OX App Suite and PowerDNS, with the participation of other E-mail, DNS and security vendors, such as Halon and VadeSecure. However, no product placement or sales pitch is allowed in TES, and meetings only focus on presenting the issues and discussing relevant technologies and best practices. Before discussion is opened to all participants, introductory presentations are offered by technical experts from the supporting organizations and companies.
The TES project wants to define and promote a set of comprehensive secure practices that ISPs collectively should follow, specifically focusing on transport level security, but also covering end-to-end message encryption between final users, secure mailbox storage, and anti-abuse protocols and measures.
In its initial phase, the project focuses on raising awareness and building capacity, providing reference information and tools, gathering people in online and offline discussions (including a Facebook group and a mailing list, featuring people from several major ISPs from Europe and outside), and helping companies to pursue as a first step the deployment of DNSSEC and DANE to secure the MTA-to-MTA transmission of messages.
Over twelve TES meetings already took place in various countries, while more are under way: keep an eye over our TES meetings calendar. As the project continues to develop, it would like to involve more companies and more countries, and trade experiences and explore possible synergies with other efforts, to further increase community attention and participation in the adoption of secure E-mail technologies.