Security Basics mailing list archives

Re: Client side email encryption

From: Synita Capler <sbookerc () uchicago edu>
Date: Mon, 16 Mar 2009 15:39:50 -0500

Vlad Styran wrote:

Quigley, Joe wrote:
Hello everyone,

I've been tasked with finding an encryption solution for email sent from
our HR departments to both internal and external clients. We are
currently running MS Exchange 2003/Outlook 2003 and 2007. We have no
plans to install Exchange 2007 at this time. One requirement we have is
it must be installed on the client. We don't want to install anything on
the mail servers.
PGP/GPG is one option. Is anyone using a different product for client
side encryption with Outlook?

Thank in advance for your time,

Joe
Hi Joe,
S/MIME is the solution supported by most email software out of thebox. Any Active Directory domain may have a local CertificationAuthority to be used within it to provide users with S/MIMEcertificates. And one can always request a free cert from a well knowroot CA: https://www.thawte.com/
I use both PGP and S/MIME way, but I am sure that PGP is more personalapproach, while S/MIME is more business-oriented.
Hope this helps.

--
sapran

I use both  PGP Desktop and Enigmail with Thunderbird.

--
Synita Capler                                           
Network Security Outreach Specialist    
NSIT - Network Security Center  
Phone: 773-834-2318

NetSec Phone:  773-702-2378 (2-CERT)
NetSec Fax:     773-834-8444
NetSec Email:   security () uchicago edu
NetSec Website: http://security.uchicago.edu



------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Find the source of cybercrime! Almost every crime today involves a computer or mobile device. Learn how to become a Computer Forensics Examiner in InfoSec Institute's hands-on Computer Forensics Course. Up to three industry recognized certs available, online computer forensics training available.

http://www.infosecinstitute.com/courses/computer_forensics_training.html
------------------------------------------------------------------------

Current thread:

Client side email encryption Quigley, Joe (Mar 13)
- Re: Client side email encryption David Schekaiban (Mar 16)
- RE: Client side email encryption Javier Becerra (Mar 16)
- Re: Client side email encryption Ansgar Wiechers (Mar 16)
- RE: Client side email encryption Charis (Mar 16)
  - RE: Client side email encryption Matthew Calloway (Mar 16)
- Re: Client side email encryption badz (Mar 16)
- Re: Client side email encryption Vlad Styran (Mar 16)
  - Re: Client side email encryption Synita Capler (Mar 16)
- <Possible follow-ups>
- Re: Client side email encryption alfredhitchcock_007 (Mar 16)
- Re: Client side email encryption anon (Mar 16)
- Re: Client side email encryption sabinaharte (Mar 16)
- RE: Client side email encryption Bob Radvanovsky (Mar 16)
- RE: Client side email encryption martijn.list (Mar 16)