2,095 votes102 comments · Office 365 Security & Compliance » Spam & Phishing · Flag idea as inappropriate… · Admin →
Work has begun on adding support for DNSSEC in Office 365 for some services and products. Different services and products will have different plans given the architecture of the Office 365 service.
For Exchange Online, commitments for support have been made here: https://techcommunity.microsoft.com/t5/exchange-team-blog/support-of-dane-and-dnssec-in-office-365-exchange-online/ba-p/1275494
An error occurred while saving the commentJohn W. O'Brien commented
DNS-based attacks seem to be growing in sophistication, frequency, and persistence. ICANN recently called for full deployment of DNSSEC across all unsecured domain names, which, right now, includes the domains associated with Office365.
Microsoft: DNSSEC is not a feature. It is a fundamental, infrastructure security capability. You should not be asking your users to vote on it, but instead making immediate and concrete plans to roll it out just as you would the next version of TLS.John W. O'Brien supported this idea ·