?
Solved

How secure is Lotus Notes "digital signature"?

Posted on 2006-06-14
5
Medium Priority
?
1,299 Views
Last Modified: 2013-12-18
How secure is Lotus Notes "digital signature"?
Like how does it compare to other digital signature technologies?
Don't know much about them, but "X.509" is one example.
0
Comment
Question by:wsfindlater
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 63

Assisted Solution

by:SysExpert
SysExpert earned 800 total points
ID: 16908121
It is 128 bit I think in R6 and above,  using Public/Private keys, so it should e extremely secure and satisfy all  US Govt. regulations.

Domino also supports X.500 partially.

I would check the IBM site for more detailed info.

I hope this helps !
0
 
LVL 46

Accepted Solution

by:
Sjef Bosman earned 1000 total points
ID: 16909286
0
 
LVL 15

Assisted Solution

by:bpmurray
bpmurray earned 200 total points
ID: 16913092
It uses standard digital signatures from Verisign and other companies, so they're as safe and secure as any.
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 16913338
Verisign, that's for SSL, but it's not used for Notes's internal security. Red the Readbook...

1.2.2 Support for larger keys in Notes and Domino 7

As computing power increases, so does the need to extend key lengths to protect against brute force attacks.

In Release 6.0, Notes and Domino can use 1024-bit RSA keys, but cannot not generate them, and can use 128-bit RC4 keys, but cannot use 128-bit RC2 keys. With the advent of 6.0.4 and 6.5.1, Notes and Domino continued to use 1024-bit RSA but can now use 128-bit RC2 keys (however, Notes and Domino cannot generate these RC2 keys).

In Release 7.0, enhancements in Notes and Domino permit 1024-bit RSA keys to be used and generated. In addition, 128-bit RC2 keys can also be used and generated, and there is underlying support for 2048-bit RSA keys.

To help with implementing larger keys, we use key rollover, the process used to update the set of Notes public and private keys that is stored in user and server ID files. Use this to periodically replace this set of keys as a precaution against undetected compromise of the private key, as a remedy to recover from a known compromise of the private key, to increase security by updating to a larger key.
0
 
LVL 15

Expert Comment

by:bpmurray
ID: 16913391
I meant for external security - the traditional use of "digital signature" as sent across the web, rather than the internal stuff. As it says in that quote, the RC2 keys are from external certificates, like Verisign.
0

Featured Post

[Webinar] Lessons on Recovering from Petya

Skyport is working hard to help customers recover from recent attacks, like the Petya worm. This work has brought to light some important lessons. New malware attacks like this can take down your entire environment. Learn from others mistakes on how to prevent Petya like worms.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

  In today’s Arena we can’t imagine our lives without Internet as we are highly used to of it. If we consider our life style just for only 2 min we found that face to face communication is swapped by e-communication.  Every Where from Works place to…
Notes Document Link used by IBM Notes is a link file which aids in the sharing of links to documents in email and webpages. The posts describe the importance and steps to create a Lotus Notes NDL file in brief.
Have you created a query with information for a calendar? ... and then, abra-cadabra, the calendar is done?! I am going to show you how to make that happen. Visualize your data!  ... really see it To use the code to create a calendar from a q…
In response to a need for security and privacy, and to continue fostering an environment members can turn to for support, solutions, and education, Experts Exchange has created anonymous question capabilities. This new feature is available to our Pr…
Suggested Courses

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question