Solved

sMIME encryption and certificates

Posted on 2004-10-28
546 Views
Last Modified: 2010-04-11
Hi,

I have a Windows 2000 / XP network. I use Eudora as mail client and SLMail as mail server.

I need to implement an sMime encryption on 5 machines (not all). I have found that Eudora does not support this feature, neither there is any graphical plugin that a standard user could easily employ (command line plugins are not useful in this situation). I do not want to move towards Outlook / Exchange: there are cost and security concerns involved. I would like to install some kind of solution that could allow the users to selectively encrypt mails, and add a certificate to them (I cannot encrypt every mail, because I do not know if the adressee would be able to decrypt them).

Do you know of any way to add encryption + certificates to my current configuration?

Additionally, I have a related issue. As I only need 5 certificates, I have contacted VeriSign and Thawte. VeriSign told me that they only issue certificates in pack of 10 or more. Thawte give the certificates for free, but the kind of certificates given is absurd. It is a personnal certificate that somebody else must check in what they call "circle of trust" (or something similar). Obviously, this is not the kind of certificate that a company could use.

What can I do? Any ideas would be appreciated
0
Question by:flechazul
    4 Comments
     
    LVL 4

    Accepted Solution

    by:
    Check out the Entrust product here http://www.entrust.com/entelligence/email/quicktour.htm

    It sounds like Thawte was talking about PgP certificates. PgP public keys are typically distributed by a circle or web of trust. It works farily well but does have it's obvious drawbacks. You might ask them more specifiically about trusted third party S/MIME  certificates. You might have to remind them that is the way their salaries are paid, by selling stuff! <LOL>

    Good Luck
    0
     

    Assisted Solution

    by:l1ttl30
    *) mailclient
    Have you already considered switching your MailApp to an opensourced one, like Thunderbird from the Mozilla suite?

    http://www.mozilla.org/products/thunderbird/

    Thunderbird supports all your required features (costs+security), and lots more.

    *) certificates
    if smime-mailing is only important between the 5 clients, you could create the certificates on your own by using openssl from openssl.org.
    all you have to do is, create a CA-certificate, import it to the 5 clients. after that create one smime-certificate for every client.

    you should take some view on how public-key encryption works! -  you want to encrypt a mail, you'll have to use the ADRESSEE's public key.
    so the adresse will always be able to decrypt the mail ;)

    o
    0
     
    LVL 4

    Assisted Solution

    by:poseidoncanuck
    Looks like the current consensus on S/MIME support for Eudora is here:
    http://eudorabb.qualcomm.com/showthread.php?t=32

    However, there's some neat stuff here:
    http://p7mviewer.com/p7mViewer_eudora_en.html

    Otherwise, it's like the others have said: grab a commercial plugin like Entrust, or switch to a different mail client.
    0
     

    Author Comment

    by:flechazul
    Thank you all for your comments. I am working on the Entrust solution, although it is very expensive. I might have no other choice but to switch from Eudora to an integrated s/Mime client like Outlook.
    0

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Suggested Solutions

    Envision that you are chipping away at another e-business site with a team of pundit developers and designers. Everything seems, by all accounts, to be going easily.
    SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
    Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
    Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

    913 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    13 Experts available now in Live!

    Get 1:1 Help Now