Have you considered x.509 certificates to create S\MIME v3 encrypted
messages? x.509 is standardized and should work with most mail clients
(Outlook, Pine, Thunderbird, Eudora, etc..). Depending on whether you need
to send encrypted messages with external parties you could build you own CA
and create your own certificates for your customers. If the number of certs
you need is not to many (or you need to use a inherently trusted
certificate) then perhaps buying them from a trusted CA such as VeriSign
would be the path to go. Overall S/MIME works pretty well cross platform
and the overhead is quite low (depending on if you need to manage your own
CA or not).
Best regards,
Steven
-----Original Message-----
From: Chris Griffin [mailto:cgriffin@dcmindiana.com]
Sent: Monday, July 25, 2005 3:14 PM
To: Security Basics
Subject: Email Encryption
Hello list,
Im trying to gather information on the best route to go with email
encryption.
I would just jump at PGP, but there are also Linux machines to be involved.
I was testing out WinPT/GPG, and that works well, but there seem to be
periodic glitches.
Since many of the people that will be involved in sending/recieving
encrypted company email are not technical, and some offsite, Id like
something that involved the least support
possible.
Does anyone have any recomendations or sugestions?
Thanks,
Chris
------------------------------------------------------------------------
CONFIDENTIALITY NOTICE:
This e-mail message, including any attachments, is for the sole use of the
intended recipient(s) and may contain confidential and privileged
information. Any unauthorized review, use, disclosure or distribution is
prohibited. If you are not the intended recipient, please contact the sender
by reply and destroy all copies of the original message.
---------------------------------------------------------------------------
