Email - Encryption / Protection (S/MIME)

About

Cryptography - Encryption (Enciphering) in Email

Message can be encrypted using:

  • smime (in transit and storage)
  • pgp (in transit and storage)
  • tls (in transit)

Typ

S/MIME

S/MIME is a long-standing protocol which allows encrypted and signed messages to be sent using standard email delivery SMTP.

It uses public key cryptography to:

  • Encrypt the message on send and decrypt the message on receipt with a suitable private key to keep message content private.
  • Sign on send and verify the signature on receipt to authenticate and protect integrity.

S/MIME 1) employs a model based on a trusted certificate authority (CA) that signs users' public keys.

Note: A message can't be decrypted if the user's key isn't uploaded when the message is delivered. Learn more about uploading certificates.

PGP

PGP (Pretty Good Privacy) is a protocol that uses also the public key cryptography to encrypt email.

See https://emailselfdefense.fsf.org/

TLS

SSL (TLS) is a protocol that helps provide privacy between communicating applications and their users during email delivery. When a server and client communicate, TLS ensures that no third party can overhear or tamper with any messages.

For delivery TLS to work, the email delivery services of both the sender and the receiver must always use TLS.

2)

See How to configure Postfix for TLS / SSL and StartTLS? 3)

1)
wiki/S/MIME
2)
https://www.google.com/transparencyreport/saferemail/
3)
https://support.google.com/mail/answer/6330403




Discover More
Cryptography - PKCS (Public Key Cryptography Standards)

PKCS #X (Public Key Cryptography Standards) are a group of public-key cryptography standards devised and published by RSA Security Inc, starting in the early 1990s. They defined the file format of key...
Gmail Tls Security
How to configure Postfix for TLS / SSL and StartTLS?

Transport Layer Security (TLS, formerly called SSL) with Postfix It provides: certificate-based authentication and encrypted sessions. An encrypted session protects the information that is transmitted:...
How to configure your server to send Email properly?

Configuring your domain to manage email is not an easy task, this article groups them in one place
Public Key Server (keyserver)

In a public key infrastructure, a public key server is a server that stores and make the public key available to the public. You can think of the keyserver as a phonebook where people: can look up...
Certificate Usage
What are the possible usages of a cryptographic certificate?

A certificate may have one or more several usages. This articles list them and show you how to discover the usage also known as certificat purpose. extensions A certificate can be used for one or...
What is a Public Key Cryptography (known as Asymmetric Cipher) ?

Public key cryptography is a cryptographic system from the 70's that uses pairs of keys It's also known as: asymmetric cryptography) non-secret encryption Public key cryptography is used by Internet...



Share this page:
Follow us:
Task Runner