Solved

Email Encryption Microsoft Office 2007 Add-on

Posted on 2013-02-04
6
485 Views
Last Modified: 2013-02-06
Hi everyone,

I have been researching for the last two weeks for an Outlook Plugin for email encryption. I was initially looking into PGP software but I can not seem to find the right one. Ideally we were looking for software that would give our users a public key and private key.

Enigmail has all the features I am looking for but it would need to be for Outlook and not Thunderbird. Spending a little bit of money would not be an issue either.

So the Prereqs would be

- A plugin
- Not extremely expensive
- For about 5 users on the same mail domain

Thank you in advance

Matt
0
Comment
Question by:meshoxford
  • 3
  • 2
6 Comments
 
LVL 10

Expert Comment

by:rscottvan
ID: 38851181
Outlook has this functionality built-in.  You can read about it here:
http://office.microsoft.com/en-us/outlook-help/encrypt-e-mail-messages-HP001230536.aspx
0
 
LVL 33

Expert Comment

by:Dave Howe
ID: 38851321
There are three major families of encryption that interoperate with email - the first is pgp as you have noticed, and the thunderbird plugin is called enigmail. For outlook 2007, you can use http://www.cumps.be/nl/blog/read/gpg-in-outlook-2007-outlookgnupg but the setup is rather manual. (note, both this and enigmail use gnupg, a compatible open source program)

If you are happy to pay, the original pgp program has gone though many corporate masters and is now back with symantec. the "desktop" encryption product gives you 2003/2007/2010 office support (for a price) - they also have programs for mobile platforms so you can access your encrypted mail "on the go"

The second (referenced by rscottvan) is s/mime, and is the same technology you are familiar with from certificate protected (https) sites. Exchange/Outlook is heavily integrated with this, with the ability to centrally issue keypairs from exchange/active directory, and even standalone outlook can use s/mime (called "digital IDs" by microsoft)

Note, both of these have a near-fatal flaw. you must, before sending to anyone, obtain *their* public key, and actually persuading correspondents to do this is pretty difficult.

The third class of scheme has a large number of (non-interoperable) providers and is called "oracle based encryption" (not related to oracle the corporation). With OBE, you communicate with a central server who will give you the encryption key for the recipient *even if they don't have one* and new users are invited to visit the central server, sign up for a (free) account, and decrypt their mail using that mechanism. Subscribers of course see this as transparent - a gateway product encrypts or decrypts the mail while in transit, so that they just use outlook as normal.

Some providers are Microsoft ( EHEE ) ZixCorp ( ZixMail PGP ( GEE ) and last but certainly not least, Cisco ( CRES )

The third solution can be scarily expensive though (Zix is cheapest, cisco probably most costly), so find out how much before you sign up :)
0
 

Author Comment

by:meshoxford
ID: 38851364
Thank you both for the replies.

@rsscottfan - We do not have an exchange server. Sorry I should of wrote that in my summary. We use a linux mail server exim from hosting.com. I am playing around with outlook at the moment.

@DaveHowe

Thank you for that well thought out response. I looked into Zix and that seems to be about 100 dollars a user a year... I am currently reading the cumps link that you sent me. Have you ever used it before? I think that I will give it a try. Let me know what you would personally recommend.

Thank you,

Matt
0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 
LVL 33

Accepted Solution

by:
Dave Howe earned 500 total points
ID: 38851571
cumps? no, I use thunderbird with enigmail, as we use outlook 2010 here and it isn't compatible with the newer solution. If you aren't an exchange site though (or more accurately, pop3) then you could use this also:

http://sites.inka.de/tesla/gpgrelay.html

which is a single-host intercepting proxy that allows you to send and receive gpg encrypted mail with any pop3+smtp mail client.
0
 

Author Closing Comment

by:meshoxford
ID: 38856629
Thank you for explaining everything
0
 
LVL 33

Expert Comment

by:Dave Howe
ID: 38858575
You are welcome. I am just happy to see someone moving to use pgp - its an awesome system, and the core of some other solutions (such as hushmail and the debian maintainer system)

Best of luck :)
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you thought ransomware was bad, think again! Doxware has the potential to be even more damaging.
Worried about if Apple can protect your documents, photos, and everything else that gets stored in iCloud? Read on to find out what Apple really uses to make things secure.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question