LVDT Beta by DCI

Ubiquitous end-to-end secure email

Getting started with LVDT for Outlook

Just download the program here and add as Outlook address book

sha256 hash = 993f4b05667ea3d6304ae2869884edc303e98dcdfb46f23b9d013f723b3afb80 lvdt.exe
Check at command prompt with "certutil -hashfile lvdt.exe sha256"
OR
Skip to "Adding LVDT to Outlook" and use our public test server (ldap.lvdt.dc.org instead of your own server at 127.0.0.1:390) to try things out. mac notes

Installing LVDT

Just double click on it to kick it off in the background. It will create a logfile in the same directory should you wish to study its inner workings. Double click on the tray icon to terminate. Then follow the step below in Outlook:

Adding LVDT to Outlook

FILE->Account Settings->Account Settings

Address Books->New

LDAP->Next

Server Name = 127.0.0.1:390 if using lvdt.exe or ldap.lvdt.dc.org if using public test server, Next

Finish

127.0.0.1:390 or ldap.lvdt.dc.org address book visible. Close and restart Outlook.

Video demo HERE.

For the DNS/email hoster: Adding SMIME certificates to your DNSSEC secured DNS

First generate a DNS record for the user's SMIME certificate by using a tool like this or sending a test email to smimea@zx.com.
Add/upload the result into your DNS+DNSSEC server
Thats it

More about LVDT

LVDT stands for LDAP to Validated Dnssec/Dane Translator. It basically is a miniature lightweight directory access protocol (LDAP) server that runs locally on your machine. Applications like Microsoft Outlook can directly query LVDT for information that is otherwise unavailable and/or unsecured. Currently LVDT is used to look-up SMIME certificates in the public DNS (secured with DNSSEC) for email. This removes one of the primary barriers to the widespread use of secured email, namely, certificate distribution. With LVDT installed I can send encrypted email without a previous exchange of certificates to anyone who has published their certificate in the DNS using IETF RFC6698. Since LVDT has its own Windows native multi-threaded I/O DNSSEC validator, the look-ups are fast and secured end-to-end from email source machine to destination machine. LVDT translates the LDAP ASN.1 style requests into equivalent DNS look-ups and validates the responses using DNSSEC.

FAQ

What standards does LVDT support? LVDT is based on IETF RFC6698 and RFC8162 and will track updates in these standards.
What other platforms will LVDT run on? Currently only Windows 7-10 and 2012R2 server. We do have plans to support other platforms if there is more interest.
What will be the post beta price? We plan on pricing the supported version in the $50USD range for single units similar to other security middleware products on the market. Server and Site licenses would certainly afford a discount.
Will the public server support SSL? Currently it does not but there are plans to do so.
Is the source code available? Source code is available under license and a separate base produced under a secure development life cycle for large companies and governments is also available.