Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Security: Lab#4-1 E-mail Security J. H. Wang Dec. 3, 2013.

Published byBernice Jones Modified over 9 years ago

Similar presentations

Presentation on theme: "Network Security: Lab#4-1 E-mail Security J. H. Wang Dec. 3, 2013."— Presentation transcript:

1 Network Security: Lab#4-1 E-mail Security J. H. Wang Dec. 3, 2013

2 Objectives To learn to use e-mail security tools –PGP To learn the availability of email security libraries –S/MIME –DKIM

3 Packages & Libraries in this Lab Packages –GPG4win: for Windows Libraries –OpenDKIM

4 Experiment Scenario Signing/verification of files using certificates –Create a new certificate –Encrypt/sign the file “original.txt” into another file “enc.txt” (using sender’s certificate) –Then, we decrypt/verify it and get another file “dec.txt” (using sender’s certificate), and check if the decrypted file is the same as the original file Sending/receiving e-mails with certificates –Set up email account –Read mails –Send mails

5 GnuPG Privacy Guard Homepage: http://www.gnupg.org/http://www.gnupg.org/ Version: –1.4.15 (portable standalone version) –2.0.22 (enhanced version, harder to build) Platforms: Linux/FreeBSD/Windows/MacOS X An implementation of OpenPGP Installation steps –(skipped)

6 GPG4win Homepage: http://www.gpg4win.org/http://www.gpg4win.org/ Latest version: 2.2.1 OpenPGP: an open standard for e-mail security (RFC 4880) –S/MIME also included Installation steps: –Simply follow the instructions on screen

7 Other Tools Included in GPG4win Kleopatra: GnuPG certificate manager –New certificate –Encrypting/Signing a file –Decrypting/Verifying a file Claws Mail: a mail reader –Setting up your mail account –Reading mails –Sending mails

8 Microsoft Outlook Support in GPG4win PGP for Outlook –GpgOL 1.0 can support OpenPGP and S/MIME

9 Configuring Outlook for S/MIME Configure Your Personal Email Certificates Send a Signed Message Read a Signed Message Check the Credentials of a Signed Message Send an Encrypted Message Read an Encrypted Message Get Certificates for Other Users

10 OpenDKIM Homepage: http://www.opendkim.org/http://www.opendkim.org/ –Latest version: opendkim 2.8.4 –C library for DKIM service: libmilter –Also a milter-based filter application: opendkim Can plug in to any milter-based MTAs: Sendmail, PostFix An open source implementation for IETF DKIM standard (RFC 6376) based on dkim-milter from Sendmail –Library: libdkim –Milter: dkim-milter 2.8.3 (plugins to sendmail) Also includes implementations of –ADSP (Author Domain Signing Practises): RFC 5617 –VBR (Vouch by Reference): RFC 5518

11 Configuration and Installation Compilation of opendkim –Download opendkim-2.8.4.tar.gz – tar -xzvf opendkim-2.8.4.tar.gz – cd opendkim-2.8.4 –./configure – make – make install Configuration of opendkim –For signing and verification Install opendkim and configure your MTA

12 Summary Email security –PGP –S/MIME –DKIM

Download ppt "Network Security: Lab#4-1 E-mail Security J. H. Wang Dec. 3, 2013."

Similar presentations

Digital Certificate Installation & User Guide For Class-2 Certificates.

Digital Certificate Installation & User Guide For Class-2 Certificates.
Installation & User Guide

Installation & User Guide
Digital Certificate Installation & User Guide For Class-2 Certificates.

Digital Certificate Installation & User Guide For Class-2 Certificates.
Digital Certificate Installation & User Guide For Class-2 Certificates.

Digital Certificate Installation & User Guide For Class-2 Certificates.
Network Security: Lab#2 J. H. Wang Apr. 28, 2011.

Network Security: Lab#2 J. H. Wang Apr. 28, 2011.
PGP Overview 2004/11/30 Information-Center meeting peterkim.

PGP Overview 2004/11/30 Information-Center meeting peterkim.
70-284 MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter 10 Securing Exchange Server 2003.

MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter 10 Securing Exchange Server 2003.
16.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Management lifecycle summary Mobile Device Management with Windows Intune or 3 rd Party tools Simplified and flexible device enrollment, using.

Management lifecycle summary Mobile Device Management with Windows Intune or 3 rd Party tools Simplified and flexible device enrollment, using.
CSCI 530L Public Key Infrastructure. Who are we talking to? Problem: We receive an e-mail. How do we know who it’s from? E-Mail address Can be spoofed.

CSCI 530L Public Key Infrastructure. Who are we talking to? Problem: We receive an . How do we know who it’s from? address Can be spoofed.
Information Networking Security and Assurance Lab National Chung Cheng University Guidelines on Electronic Mail Security

Information Networking Security and Assurance Lab National Chung Cheng University Guidelines on Electronic Mail Security
Lecture 12 e-mail Security. Summary  PEM  secure email  PGP  S/MIME.

Lecture 12 Security. Summary  PEM  secure  PGP  S/MIME.
Cryptography and Network Security Chapter 15 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 15 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Email Security Jonathan Calazan December 12, 2005.

Security Jonathan Calazan December 12, 2005.
Guide to Operating System Security Chapter 10 E-mail Security.

Guide to Operating System Security Chapter 10 Security.
DePaul Information Security

DePaul Information Security
» Explain the way that electronic mail (e-mail) works » Configure an e-mail client » Identify e-mail message components » Create and send e-mail messages.

» Explain the way that electronic mail ( ) works » Configure an client » Identify message components » Create and send messages.
SMUCSE 5349/49 Email Security. SMUCSE 5349/7349 Threats Threats to the security of e-mail itself –Loss of confidentiality E-mails are sent in clear over.

SMUCSE 5349/49 Security. SMUCSE 5349/7349 Threats Threats to the security of itself –Loss of confidentiality s are sent in clear over.
Masud Hasan 03-60-475 Secure Email Project 1. Secure Email It uses Digital Certificate combined with S/MIME capable email clients to digitally sign and.

Masud Hasan Secure Project 1. Secure It uses Digital Certificate combined with S/MIME capable clients to digitally sign and.
AQA Computing A2 © Nelson Thornes 2009 Section 6.4 1 Unit 3 Section 6.4: Internet Security Digital Signatures and Certificates.

AQA Computing A2 © Nelson Thornes 2009 Section Unit 3 Section 6.4: Internet Security Digital Signatures and Certificates.

Similar presentations

Ads by Google