SSL Email certificate

How do I go about encrypiting email. I work for doctors and they are beginning to want to email patient data to specialists for consulting/help with certain cases. While I tell them they shouldn't use email - they pay my salary and I do what I'm told. I've been told to get an email ssl cert for each client. How does that work exactly and how do I get them? Right now, our email is hosted - about 6 accounts.
LVL 1
prlitAsked:
Who is Participating?
 
rvthostCommented:
prlit - No, it's all part of the public/private key infrastructure and it's what allows you to securely send encrypted email.

Review page 4 & 6 which discusses the process a bit:
http://www.verisign.com/stellent/groups/public/documents/guides/005326.pdf


By the way, Thawte offers free email certificates instead of Verisign's paid cert:
http://www.thawte.com/secure-email/personal-email-certificates/index.html
0
 
Alan Huseyin KayahanCommented:
             Hi prlit
               Verisign Digital ID is what you need (I use it too, a certificate icon appear in every mail).
              Details and pricing is below.
http://www.verisign.com/products-services/security-services/pki/pki-application/email-digital-id/index.html

Regards
0
 
rvthostCommented:
Digital IDs (S/MIME) are one option, another is PGP.  

The basic idea for any of them is that to send an external person an encrypted email, you must have their public key.  So if you want to send me an encrypted email, you must have my public key in form of my digital ID certificate or my public PGP key.  If you install a Digital ID, you can "sign" your email to me, but you cannot encrypt it.  This link provides a fairly good overview, otherwise just search Experts-Exchange for "encrypting email" and you will get a pile of hits:

http://www.comodo.com/support/products/email_certs/outlook2003.html
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
prlitAuthor Commented:
I'm trying out Verisigns Digital ID. Does the other person have to have a cert as well?? When I try to send a test message, my options are to cancel the message or unencrypt.
0
 
rvthostCommented:
Correct, to send an internet user an encrypted message, you must have THEIR public key.  
0
 
prlitAuthor Commented:
There's no way to call ahead with a "password" of some sort for them to decrypt the message?
0
 
Alan Huseyin KayahanCommented:
              No, other person does not have to have a cert. Your mails are under protection of Verisign and I dont think it can be decrypted.
0
 
prlitAuthor Commented:
Is that feasable with something other than verisign?
0
 
Alan Huseyin KayahanCommented:
              I wouldnt waste my time on things other than Verisign. And by the way, how would people trust to a free email certificate?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.