SMTPS

From Wikipedia, the free encyclopedia
  (Redirected from Smtps)
Jump to navigation Jump to search

SMTPS (Simple Mail Transfer Protocol Secure) is a method for securing SMTP with transport layer security. It is intended to provide authentication of the communication partners, as well as data integrity and confidentiality.

SMTPS is not a proprietary protocol and not an extension of SMTP. It is a way to secure SMTP at the transport layer. SMTPS uses port 465.

This means that the client and server speak normal SMTP at the application layer, but the connection is secured by SSL or TLS. This happens when the connection is established before any mail data has been exchanged. Since whether or not to use SSL or TLS is not negotiated by the peers, SMTPS services are usually reachable on a dedicated port of their own.

History[edit]

Originally, in early 1997, the Internet Assigned Numbers Authority registered 465 for SMTPS.[1] By the end of 1998, this was revoked when STARTTLS had been specified.[2] With STARTTLS, the same port can be used with or without TLS. SMTP was seen as particularly important, because clients of this protocol are often other mail servers, which can not know whether a server they wish to communicate with will have a separate port for TLS.[3] The port 465 is registered for both Source-Specific Multicast audio and video[4][5] and submissions (aka SMTPS) as of RFC 8314.[6]

In 2014, many services continue to offer the deprecated SMTPS interface on port 465 in addition to (or instead of) the message submission interface on the port 587 defined by RFC 6409.[7] Service providers that maintain port 465 do so because[8] older Microsoft applications (including Entourage v10.0 and its successor, Outlook for Mac 2011) do not support STARTTLS,[9] and thus do not support the SMTP submission standard (ESMTPS on port 587). The only way for service providers to offer those clients an encrypted connection is to maintain port 465.

RFC 8314 "Cleartext Considered Obsolete: Use of TLS for Email Submission and Access"[10] reinstates the registration of port 465 for implicitly encrypted mail submission.

References[edit]

  1. ^ "NEW DRAFT: Regularizing Port Numbers for SSL". w3. 1997-02-07. Retrieved 2013-07-27.
  2. ^ Hoffman, Paul (1998-11-12). "Revoking the smtps TCP port". ietf-apps-tls (Mailing list). Internet Mail Consortium. Archived from the original on 2015-06-03. Retrieved 2016-10-22.
  3. ^ Paul Hoffman (1997-06-01). "Do we need IMAP / TLS or POP / TLS?". Internet Mail Consortium. Archived from the original on 2009-08-19. Retrieved 2009-09-16.
  4. ^ "Port Numbers". Internet Assigned Numbers Authority. 2009-09-14. Retrieved 2018-08-22.
  5. ^ "SSM". Cisco Systems. Archived from the original on 2013-01-10. Retrieved 2009-09-16.
  6. ^ "Cleartext Considered Obsolete: Use of Transport Layer Security (TLS) for Email Submission and Access". IETF.org. IETF. Retrieved 2018-08-22.
  7. ^ "Re-mishap in Gmail". Heise Online. 2009-09-24. Retrieved 2009-09-25.
  8. ^ "SMTP mail settings". The Art Farm. Retrieved 28 April 2013.
  9. ^ "Postfix TLS support". Retrieved 28 April 2013.
  10. ^ "Cleartext Considered Obsolete: Use of TLS for Email Submission and Access". Retrieved 13 February 2018.