S/MIME (Secure/Multipurpose Internet Mail Extensions) security enhancement to MIME email – original Internet RFC822 email was text only – MIME provided.

Slides:



Advertisements
Similar presentations
Cryptography and Network Security Chapter 18
Advertisements

Spring 2012: CS419 Computer Security Vinod Ganapathy SSL, etc.
Cryptography and Network Security Sixth Edition by William Stallings.
Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 22: Internet Security Protocols and.
Lecture 5: security: PGP Anish Arora CSE 5473 Introduction to Network Security.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Data & Network Security
Lecture 22 Internet Security Protocols and Standards
Chapter 5 Electronic mail security. Outline Pretty good privacy S/MIME Recommended web sites.
1 Pertemuan 12 Security Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
NS-H / Security. NS-H / Security is one of the most widely used and regarded network services currently message.
Electronic mail security
Lecture 22 Internet Security Protocols and Standards modified from slides of Lawrie Brown.
Henric Johnson1 Electronic mail security Henric Johnson Blekinge Institute of Technology, Sweden
Cryptography and Network Security Chapter 15 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
SMUCSE 5349/49 Security. SMUCSE 5349/7349 Threats Threats to the security of itself –Loss of confidentiality s are sent in clear over.
Security PGP, S/MIME Certificates and PKI
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 21 – Internet Security.
Electronic Mail Security
Cryptography and Network Security Chapter 18
Prof. John A. Copeland fax Office: Klaus
Chap 81 Electronic mail security. Chap 82 Outline Pretty good privacy S/MIME Recommended web sites.
Electronic mail security. Outline Pretty good privacy S/MIME.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Network Security Essentials Chapter 7 Fourth Edition by William Stallings (Based on Lecture slides by Lawrie Brown)
Chapter 6 Electronic Mail Security MSc. NGUYEN CAO DAT Dr. TRAN VAN HOAI 1.
Arab Academy for Science & Technology and Maritime Transport e Represented By : Ahmed Eldemallawy Ahmed Madani.
CSCE 815 Network Security Lecture 12 Security S/MIME February 25, 2003.
Symmetric Encryption Mom’sSecretApplePieRecipe Mom’sSecretApplePieRecipe The same key is used to encrypt and decrypt the data. DES is one example. Pie.
Cryptography and Network Security (CS435) Part Twelve (Electronic Mail Security)
1 Electronic Mail Security Outline Pretty good privacy S/MIME Based on slides by Dr. Lawrie Brown of the Australian Defence Force Academy, University College,
1 Chapter 5 Electronic mail security. 2 Outline Pretty good privacy S/MIME Recommended web sites.
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 21 – Internet Security.
Chapter 22 Internet Security Protocols and Standards.
NSP 02 - Electronic Mail Security1 Electronic Mail Security Ch 15 of Cryptography and Network Security - Third Edition by William Stallings Modified from.
ECE-8813 / CS Prof. John A. Copeland fax Office:
Authentication Applications 1. Kerberos 2. Key Management and Distribution 3. X.509 Directory Authentication service 4. Public Key Infrastructure 5. Electronic.
Electronic Mail Security Prepared by Dr. Lamiaa Elshenawy
2/19/2016clicktechsolution.com Security. 2/19/2016clicktechsolution.com Threats Threats to the security of itself –Loss of confidentiality.
Security SMIME IT352 | Network Security |Najwa AlGhamdi 1.
By Marwan Al-Namari & Hafezah Ben Othman Author: William Stallings College of Computer Science at Al-Qunfudah Umm Al-Qura University, KSA, Makkah 1.
Chapter 7 : Web Security Lecture #1-Week 12 Dr.Khalid Dr. Mohannad Information Security CIT 460 Information Security Dr.Khalid Dr. Mohannad 1.
Prof. Wenguo Wang Network Information Security Prof. Wenguo Wang Tel College of Computer Science QUFU NORMAL UNIVERSITY.
1 CNLab/University of Ulsan Chapter 16 Electronic Mail Security  PGP (Pretty Good Privacy)  S/MIME.
Lecture 8 (Chapter 18) Electronic Mail Security Prepared by Dr. Lamiaa M. Elshenawy 1.
第五章 电子邮件安全. Security is one of the most widely used and regarded network services currently message contents are not secure –may be inspected.
Electronic mail security. Outline Pretty good privacy S/MIME.
Cryptography and Network Security Chapter 18
Electronic mail security
Security is one of the most widely used and regarded network services
Chapter 15 – Electronic Mail Security
By Marwan Al-Namari Author: William Stallings
Security Pretty Good Privacy (PGP)
CSE565: Computer Security Lectures 19, 20 Electronic Mail Security
S/MIME T ANANDHAN.
MAIL AND SECURITY PERTEMUAN 13
Cryptography and Network Security Chapter 18
Cryptography and Network Security Chapter 15
NET 536 Network Security Networks and Communication Department
ELECTRONIC MAIL SECURITY
S/MIME (Secure/Multipurpose Internet Mail Extensions)
ELECTRONIC MAIL SECURITY
Cryptography and Network Security Chapter 15
Cryptography and Network Security Chapter 15
Cryptography and Network Security Chapter 15
Cryptography and Network Security
Presentation transcript:

S/MIME (Secure/Multipurpose Internet Mail Extensions) security enhancement to MIME – original Internet RFC822 was text only – MIME provided support for varying content types and multi-part messages – with encoding of binary data to textual form – S/MIME added security enhancements have S/MIME support in many mail agents – eg MS Outlook, Mozilla, Mac Mail etc

S/MIME Functions enveloped data – encrypted content and associated keys signed data – encoded message + signed digest clear-signed data – cleartext message + encoded signed digest signed & enveloped data – nesting of signed & encrypted entities

S/MIME Cryptographic Algorithms digital signatures: DSS & RSA hash functions: SHA-1 & MD5 session key encryption: ElGamal & RSA message encryption: AES, Triple-DES, RC2/40 and others MAC: HMAC with SHA-1 have process to decide which algs to use

S/MIME Messages  S/MIME secures a MIME entity with a signature, encryption, or both  forming a MIME wrapped PKCS object  have a range of content-types: enveloped data signed data clear-signed data registration request certificate only message

S/MIME Certificate Processing S/MIME uses X.509 v3 certificates managed using a hybrid of a strict X.509 CA hierarchy & PGP’s web of trust each client has a list of trusted CA’s certs and own public/private key pairs & certs certificates must be signed by trusted CA’s

Certificate Authorities have several well-known CA’s Verisign one of most widely used Verisign issues several types of Digital IDs increasing levels of checks & hence trust ClassIdentity ChecksUsage 1name/ checkweb browsing/ 2+ enroll/addr check , subs, s/w validate 3+ ID documentse-banking/service access

S/MIME Enhanced Security Services 3 proposed enhanced security services: – signed receipts – security labels – secure mailing lists

Domain Keys Identified Mail a specification for cryptographically signing messages so signing domain claims responsibility recipients / agents can verify signature proposed Internet Standard RFC 4871 has been widely adopted

Internet Mail Architecture

Threats see RFC Analysis of Threats Motivating DomainKeys Identified Mail describes the problem space in terms of: – range: low end, spammers, fraudsters – capabilities in terms of where submitted, signed, volume, routing naming etc – outside located attackers

DKIM Strategy transparent to user – MSA sign – MDA verify for pragmatic reasons

DCIM Functional Flow

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.