[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1303
  • Last Modified:

How secure is Lotus Notes "digital signature"?

How secure is Lotus Notes "digital signature"?
Like how does it compare to other digital signature technologies?
Don't know much about them, but "X.509" is one example.
0
wsfindlater
Asked:
wsfindlater
  • 2
  • 2
3 Solutions
 
SysExpertCommented:
It is 128 bit I think in R6 and above,  using Public/Private keys, so it should e extremely secure and satisfy all  US Govt. regulations.

Domino also supports X.500 partially.

I would check the IBM site for more detailed info.

I hope this helps !
0
 
Sjef BosmanGroupware ConsultantCommented:
0
 
bpmurrayCommented:
It uses standard digital signatures from Verisign and other companies, so they're as safe and secure as any.
0
 
Sjef BosmanGroupware ConsultantCommented:
Verisign, that's for SSL, but it's not used for Notes's internal security. Red the Readbook...

1.2.2 Support for larger keys in Notes and Domino 7

As computing power increases, so does the need to extend key lengths to protect against brute force attacks.

In Release 6.0, Notes and Domino can use 1024-bit RSA keys, but cannot not generate them, and can use 128-bit RC4 keys, but cannot use 128-bit RC2 keys. With the advent of 6.0.4 and 6.5.1, Notes and Domino continued to use 1024-bit RSA but can now use 128-bit RC2 keys (however, Notes and Domino cannot generate these RC2 keys).

In Release 7.0, enhancements in Notes and Domino permit 1024-bit RSA keys to be used and generated. In addition, 128-bit RC2 keys can also be used and generated, and there is underlying support for 2048-bit RSA keys.

To help with implementing larger keys, we use key rollover, the process used to update the set of Notes public and private keys that is stored in user and server ID files. Use this to periodically replace this set of keys as a precaution against undetected compromise of the private key, as a remedy to recover from a known compromise of the private key, to increase security by updating to a larger key.
0
 
bpmurrayCommented:
I meant for external security - the traditional use of "digital signature" as sent across the web, rather than the internal stuff. As it says in that quote, the RC2 keys are from external certificates, like Verisign.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now