Re: Need General Encryption Guidance
- From: "Rich Matheisen [MVP]" <richnews@xxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 15 Sep 2005 14:14:55 -0400
"C Emmons" <C Emmons@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
>I am in the early stages of investigating encryption. I see that
>Exchange/Outlook seems to offer quite a bit of functionality. Do most people
>use the Exchange/Outlook functionality,
Exchange and Outlook only allow you to use a certificate to sign (or
seal) a message. And Exchange 2003 hardly gets involved at all
(Exchange 2000 was still dealing with key management).
>a 3rd party solution, or a
>combination - and why?? My biggest question at this stage is how decryption
>is handled by external recipients.
Assming you'll be using x.509v3 certs to sign/seal the mesages, the
recipient must have your public key and they *should* trust your CA
(either directly or implicitly through the CA chain of trust). With
your public key they decode the message/signature that you applied
with your private key.
>I have read some materials - mostly
>Exchange doc, but need help in the direction of my future research of our
>best solution. Any recommendations or comments are welcome and appreciated.
PKI can be expensive if your organization is of any size. That expense
might come from having to purchase certs from a CA, or from installing
and managing the CA's, revokation list, etc. within your own org.
You can have a look at companies like Voltage (http://www.voltage.com)
for solutions that don't require the use of certificates.
--
Rich Matheisen
MCSE+I, Exchange MVP
MS Exchange FAQ at http://www.swinc.com/resource/exch_faq.htm
Don't send mail to this address mailto:h.pott@xxxxxxxxxxxxx
.
- Prev by Date: Re: cannot mount mailbox or public folder stores
- Next by Date: Re: RBL logs
- Previous by thread: where are "queues" messages stored?
- Next by thread: Re: RBL logs
- Index(es):
Relevant Pages
|
Loading
