Masud Hasan Secure Project 1
Secure It uses Digital Certificate combined with S/MIME capable clients to digitally sign and encrypt
Two Basic Features – The two basic features of security are privacy (only the intended recipient can read the message) and authentication (the recipient can be assured of the identity of the sender). The technical capabilities for these functions has been known for many years, but they have only been applied to Internet mail recently.
S/MIME Client –There are currently two actively proposed methods for providing these security services: S/MIME and PGP (both in its early incarnation as PGP/MIME, and as the new OpenPGP standard). – Microsoft Outlook: S/MIME Client.
OnSite Digital Certificate A digital certificate is an electronic means of establishing your credentials when doing business or other transactions on the Web. It is issued by a certification authority (CA). It contains your name, a serial number, expiration dates, a copy of the certificate holder's public key (used for encrypting and decrypting messages and digital signatures), and the digital signature of the certificate-issuing authority so that a recipient can verify that the certificate is real.
How it Works –When registering for secure 2 keys are generated : a public key, which is stored in the Global Address List : this is used for encrypting messages sent to you by others. a private key, which is stored in the mail client (Outlook) on your pc : is used for digitally signing your own messages, and for decrypting encrypted messages sent to you.
OnSite System Requirements Operating Systems: Windows 98 native & Second Edition, Windows NT with Service Pack 5, Windows 2000 Power User or with a patch installed by an administrator. Browsers: IE V5sp1 or later, 128 bit encryption enabled (domestic version) programs: Outlook 98 or 2000 Disk Space: Minimal Intel platform. The computer must have at least a 100 MHZ Pentium processor.
OnSite Supported Platforms IE 5.0 SP1 or better is the only web browser currently supported for enrollment. Wireless handheld and palmtop devices are not currently supported for secure . Outlook Web Access does not currently support secure . Alternatives to the standard solution such as PGP may not be used for secure .
OnSite Installation/Enrollment Review the System Requirement Enroll for a Digital Certificate Configure Outlook Account Verify the recipient also has Secure
OnSite Enrollment Steps
OnSite Enrollment Steps
OnSite Configuring Outlook The user must configure their security settings in Outlook to recognize and make use of their newly downloaded personal certificate. This would involve: -Selecting a Signing Certificate -Choosing a hash algorithm -Deciding on a name and format for the settings -Having clear text signed messages sent
OnSite Configuring Outlook
OnSite Configuring Outlook
OnSite Sending Secure Encryption should not be set as a default To send a signed or encrypted message: - Click the lock and seal icons on the toolbar of a new message -or- -Go to Options on the toolbar of a new message and check Encrypt Message and Add Digital Signature
OnSite Receiving Secure No action needs to be taken An encrypted message cannot be viewed in the preview pane, it must be opened The lock and seal icons will appear on the message showing that it has been encrypted and signed
OnSite Services/ Mechanisms and Algorithm Used Services in a security protocol SignaturesEncryption Hashing RSADESSHAI
OnSite How you can secure your ? There are free digital certificates in the web. Microsoft Clients have S/MIME protocol Unix user can use it too Following all the steps, you can secure your .
OnSite Conclusion I have been able to improve my knowledge in Computer Security by learning this tool. My second project will be able to provide more details about PGP mail client using leading encryption techniques and to compare two different technologies for same purpose. Until then, Thanks for listening and good luck for Midterm.
OnSite QUESTIONS Only easy ones will be answered! Kidding~~