Erreichen

Grow

Manage

Automate

Erreichen

Grow

Manage

Automate

Was sind SSL, TLS und STARTTLS E-Mail-Verschlüsselung?

E-Mail

1 min read

Was sind SSL, TLS und STARTTLS E-Mail-Verschlüsselung?

E-Mail

1 min read

SSL, TLS und STARTTLS beziehen sich auf standardisierte Protokolle, die zur Sicherung von E-Mail-Übertragungen verwendet werden. SSL (Secure Sockets Layer) und sein Nachfolger, Transport Layer Security (TLS), bieten eine Möglichkeit, einen Kommunikationskanal zwischen zwei Computern über das Internet zu verschlüsseln. In den meisten Fällen können die Begriffe SSL und TLS austauschbar verwendet werden, es sei denn, Sie beziehen sich auf eine spezifische Version des Protokolls.

Verstehen von SSL, TLS und STARTTLS-E-Mail-Verschlüsselung

SSL, TLS, and STARTTLS refer to standard protocols used to secure email transmissions.

SSL (Secure Sockets Layer) and its successor, Transport Layer Security (TLS), provide a way to encrypt a communication channel between two computers over the Internet. In most cases, the terms SSL and TLS can be used interchangeably unless you’re referring to a specific version of the protocol.

Because TLS and SSL are application-layer protocols, senders and receivers need to know that they are being used to encrypt emails during transit. That’s where STARTTLS comes into play.

STARTTLS is an email protocol command that tells an email server that an email client, including an email client running in a web browser, wants to turn an existing insecure connection into a secure one. (By the way, the use of “TLS” in the STARTTLS command name does not mean that it only works with the TLS security protocol. It works with SSL too.)



How does SSL work?

When an email client sends and receives email, it uses TCP (Transmission Control Protocol) via the transport layer to initiate a “handshake” with the email server. During that basic setup process, the email client tells the email server which version of SSL or TLS it’s running and what cipher suites (a combination of processes used to negotiate security settings) and compression methods it wants to use.

After the setup is finished, the email server verifies its identity to the email client by sending a certificate that is trusted by the user’s software, or by a third party trusted by it. Doing so ensures that the email client isn’t sending messages to an imposter. Once the client knows it can trust the server, a key is exchanged between the two, which allows all messages sent and received to be encrypted.



Why should you care about SSL or TLS?

It’s important to use SSL or TLS with your email setup because unsecure email is a common attack vector for the bad guys. Anyone who intercepts encrypted emails is left with garbage text that they can’t do anything with, because only the email server and client have the keys to decode the messages.

This is key for ensuring the protection of user names, passwords, personal details, and other sensitive information that’s often found in emails. If an attacker discovers a weakness, they will exploit it for as long as they can and mine data that will be sold on the black market.

TLS is the preferred encryption method because it’s newer and offers more robust security features than SSL does.

It’s also a good idea to combine TLS-based email encryption with email authentication to ensure the integrity of email messages.



How does SparkPost use SSL, TLS, and STARTTLS?

SparkPost’s incoming API calls use HTTPS (the secure version of HTTP) and are SSL/TLS encrypted. If you choose to enable Encryption: STARTTLS, then TLS will be used with incoming SMTP. SparkPost also uses opportunistic TLS for outbound messages, meaning that it uses TLS to encrypt them if the receiving SMTP server supports TLS.

Erfahren Sie mehr über SSL, TLS und STARTTLS

Lesen Sie zusätzliche SSL-, TLS- und STARTTLS-Ressourcen

Hier sind einige Ressourcen, die Ihnen helfen werden, tiefer in SSL, TLS und STARTTLS einzutauchen:

Abonnieren Sie unseren Newsletter.

Bleiben Sie mit Bird auf dem Laufenden durch wöchentliche Updates in Ihrem Posteingang.

By submitting, you agree Bird may contact you about our products and services.
You can unsubscribe anytime. See Bird's Privacy Statement for details on data processing.

Abonnieren Sie unseren Newsletter.

Bleiben Sie mit Bird auf dem Laufenden durch wöchentliche Updates in Ihrem Posteingang.

By submitting, you agree Bird may contact you about our products and services.
You can unsubscribe anytime. See Bird's Privacy Statement for details on data processing.

Abonnieren Sie unseren Newsletter.

Bleiben Sie mit Bird auf dem Laufenden durch wöchentliche Updates in Ihrem Posteingang.

By submitting, you agree Bird may contact you about our products and services.
You can unsubscribe anytime. See Bird's Privacy Statement for details on data processing.

Unternehmen

Newsletter

Bleiben Sie mit Bird auf dem Laufenden durch wöchentliche Updates in Ihrem Posteingang.

By submitting, you agree Bird may contact you about our products and services.
You can unsubscribe anytime. See Bird's Privacy Statement for details on data processing.

Unternehmen

Newsletter

Bleiben Sie mit Bird auf dem Laufenden durch wöchentliche Updates in Ihrem Posteingang.

By submitting, you agree Bird may contact you about our products and services.
You can unsubscribe anytime. See Bird's Privacy Statement for details on data processing.

Erreichen

Grow

Manage

Automate

Ressourcen

Unternehmen

Newsletter

Bleiben Sie mit Bird auf dem Laufenden durch wöchentliche Updates in Ihrem Posteingang.

By submitting, you agree Bird may contact you about our products and services.
You can unsubscribe anytime. See Bird's Privacy Statement for details on data processing.