1 / 13

Electronic Mail Security

Electronic Mail Security. Types of electronic mail security. Pretty Good Privacy S/Mime. Pretty Good Privacy. Developed almost entirely by Phil Zimmerman Free, worldwide, works across a variety of platforms. Based on known algorithms such as RSA. Confidentiality and Authentication.

jeffc
Download Presentation

Electronic Mail Security

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Electronic Mail Security

  2. Types of electronic mail security • Pretty Good Privacy • S/Mime

  3. Pretty Good Privacy • Developed almost entirely by Phil Zimmerman • Free, worldwide, works across a variety of platforms. • Based on known algorithms such as RSA

  4. Confidentiality and Authentication • To have both confidentiality and authentication • The sender first signs the message using it’s own private key • Then encrypts the message with the session with the session key • Then encrypts the session key with the recipient’s private key

  5. Compression • PGP compresses files using a ZIP algorithm • The signature is generated before compression • To store the uncompressed message with the signature • Would interfere with compression because of multiple compression algorithms exist. • Message encryption is after compression • To strengthen cryptographic security, as it reduces redundancy

  6. Cryptographic Keys • PGP uses four types of keys • Session keys • Public keys • Private Keys • Passphrase keys

  7. S/MIME • Stands for Secure/Multipurpose Internet Mail Extension • Security enhancement to the MIME internet e-mail format

  8. MIME – Header Files • There are five message header fields • MIME-Version • Content-Type • Content-Transferring Encoding • Content-ID • Content-Description

  9. MIME – Content Types • Text • Plain • Enriched • Multipart • Mixed • Parallel • Alternative • Digest

  10. MIME – Content Types • Message • Rfc822 • Partial • External-body • Image • Jpeg • Gif • Video • mpeg

  11. Mime – Content Type • Audio • Basic • Application • PostScript • Octet-stream

  12. S/MIME Functionality • S/MIME provides the following functions • Enveloped Data • Consists of encrypted content of any type of encrypted content encryption keys • Signed Data • Contains a digital signature • Clear-signed data • Encoded digital signature • Signed and enveloped data • Encrypted and Signed data

  13. S/MIME – Enhanced Security Services • Signed receipts • The receiver returns a signed receipt back to the sender to verify the message arrived • Security labels • Permission, priority or role of message being sent • Secure mailing lists • Sending to multiple recipients at once securely by using a public key for the whole mailing list

More Related