RE: Secure e-mail

["Walter Williams" <wbjw () mindspring com>]

Exchange has built in support for this, as does outlook.  They both support
the open internet secure email standard of s/mime.  You can find
documentation on how to configure this in the product set.  Since you want
to include outside partners, you will want to leverage a public PKI for your
root, and perhaps put in place your own CA beneath that, or lease PKI
services.  MS provides you with a free CA with Windows 2000 which is fine
for many needs, and works well with Exchange.  No need to buy much of
anything, you've already got a solution.

Walt

> -----Original Message-----
> From: Alan Cooper [mailto:imalcooper () yahoo com]
> Sent: Thursday, November 07, 2002 9:41 AM
> To: security-basics () security-focus com
> Subject: Secure e-mail
>
>
> I am looking for the best way to provide secure e-mail
> for remote employees (both remote offices and mobile
> workers).  Currently e-mail is provided from a central
> e-mail server (Exchange).  The remote offices and
> mobile workers connect via Internet to the central
> Exchange server to send and receive e-mail.
>
> I am stuck with the Exchange server.  The client is
> happy with Exchange and is not interested in replacing
> it.
>
> The solution must include the ability to encrypt
> e-mail to all employees as well as outside partners
> and must be as transparent as possible to the end
> user.
>
> Suggestions....
>
> Al Cooper
> Senior Network Engineer
> HMC Networks
>
> __________________________________________________
> Do you Yahoo!?
> U2 on LAUNCH - Exclusive greatest hits videos
> http://launch.yahoo.com/u2