How to encrypt 1 single message

How can I selectively encrypt messages in my mail box so that even IS Administrators can't read them?
rbendAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
KimdaConnect With a Mentor Commented:
well yes. if he has your password, then he can use your USER.ID. which has the encrypion key.

you mention that he "becomes" you. how do you mean he does that. if he somehow get the encryption key out of the Id file, then remove him from the ACL of your database, then he will not have access.

right click on the database icon, choose Access control , and remove whatever the username of the administator is.

remeber to enforce CONSISTEN ACL or no security features will "work" when the database is accessed through "Local" which is what is done when sitting on the server workstation, or on a local replica of the mail file.
0
 
R_ReedCommented:
Right click on a document in your inbox.  Select the key tab.  You can then enter your Secret Encryption Key.  You can also set that only you can read the documents.  Either or will do it.
0
 
rbendAuthor Commented:
I've tried everything but I can't get access to the "enter Private Encryption Key" area. Just won't let me in.??
I have selected the DOC and gone to the key tab as instructed but no go on the Encryption Key.
??
0
Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

 
HemanthaKumarCommented:
You must create an Secret Encryption key.

Goto File..Tools..UserId..Encryption and create one.

Then you will have an option to encrypt the documents
0
 
R_ReedCommented:
Sorry, thought you already had the encryption key set up!
0
 
bprocopioCommented:
Right-click on the document and select Document properties.  Go to the last tab (it has a key on it) and you'll see a box that says "Who can read this document"....

Deselect the checkbox that says "All Readers and Above" and in the box below put a checkmark next to your name.

NOTE: if you have a local replica of your mailbox, documents w/ this access will not replicate because not even the server can see them (unless you put a checkmark next to the server)
0
 
rbendAuthor Commented:
You are all very helpful, however, the IS Admin has a copy of everyone's ID file on the server. All he has to do is "become me" with my ID file and then all of this security is shot. How can I even hide it from him?
0
 
bprocopioCommented:
Legal Note:  Unlike phones, courts have upheld that email is property of the company, so legally the company can access your pc and read your email because from a legal standpoint it's their property.  If you have information on there that is that secret, I wouldn't use company e-mail.

However, to answer your question, you'll have to create an encryption key (that's unique to the copy of your id on your pc, the admin won't have the same key).  To create the key, go to File -> Tools -> User ID.  Go to the encryption key tab and select "New" from the Options.  Assign the new key a name and comment as appropiate.  Now, you just created a private encryption key unique to the copy of your id on your pc (the admin won't have the same key unless you give it to them).

Go to the documents you want to encrypt in your mail.  Right-click and go to the Key tab.  Under "Secret Encryption Keys" select the key you just created.  Open the document, edit it, and save it.  After you save it, you just encrypted the document w/ that private key....

That's it.
0
 
HemanthaKumarCommented:
What bprocopio says is true and I think u got the answer for that.

Hemanth
0
 
rbendAuthor Commented:
hate to prolong this adventure, but I just did what was instructed. The IS Admin then took a copy of my USERID from the server and went in as me and was able to view my encrypted message no problem.
The Scenerio is:
This is the CEO of the company. He replicates to his laptop every day. Somtimes there are IS people working on his PC and he wants to be sure NO ONE can view some of his mail pieces. If someone can get a copy of his USERID, then they're in. We've proven it.
Still hoping for a soulution..
0
 
bprocopioCommented:
If you remove entries from the ACL, the issue of the Admins switching id's to the CEO is still unresolved.

I can't think of any other way to encrypt individual mail messages, and no matter how far you go with it, someone somewhere will have a way into the mail file.

Basically, no matter how well the mail file is locked down it's going to come to a case in Business Ethics...  

I've worked for a couple Fortune 100 companies, and the CEO's mail is no different than any other user because the IS department is expected to maintain their obligation to integrity.  Idealisitc ... yes, but you have to trust your people.

The CEO, or whomever is responsible for handing the machine back to the CEO should check the user activity to see if the mail file was accessed while it was with the IS department.  If so, there's a problem with the integrity of one of techs.

I apologize for the philosophical rant.
0
 
rbendAuthor Commented:
I'm gonna let this one go as it is exhausted. Thanks for all of the input and insight everyone.
0
All Courses

From novice to tech pro — start learning today.