Digital certificates S / MIME v3 digital certificates today's most popular and allow you to send e-mail signed or encrypted with 3DES algorithm (version 2 instead of 40-bit).
S / MIME means Secure Multipurpose Internet Mail Extension and is a standard for digital certficate using PKCS # 7 for the data and format for X.509 certificates themselves. Its operation is based on so-called CA, Certification Authority or Certification Authority, the public, which is connected to the certificate required by the user (the public key, private remains secret) and that it publish and make accessible to anyone ( using a Web browser) for the subsequent verification of the origin of this. The request to the CA then generates two related keys: one secret, private and installed directly in the browser, and the public, knowable by anyone.
The current Italian legislation provides for the use of the PEC (Presidential Decree 68/2005), but also allows the use of other appropriate instruments, as may be precisely that of S / MIME security much higher: in fact the PEC does not certify the 'identity of the sender but only time and the receipt of a letter as A / R. Instead SMIME is similar to digital signatures.
Certificates S / MIME in fact guarantee the following:
The current Italian legislation provides for the use of the PEC (Presidential Decree 68/2005), but also allows the use of other appropriate instruments, as may be precisely that of S / MIME security much higher: in fact the PEC does not certify the 'identity of the sender but only time and the receipt of a letter as A / R. Instead SMIME is similar to digital signatures.
Certificates S / MIME in fact guarantee the following:
- non-repudiation
- source
-
authenticity of the sender but can also provide:
- confidentiality (or privacy)
- integrity of the message (with encryption)
There are several online companies that provide free digital certificates to users for personal use: GeoTrust, Thawte, Comodo. Some of these links the certificate to the personal identification documents (some visually), some to the simple mail and generate keys on-line through the browser and then install this. Generate two keys, one private and one public.
Once you have your certificate you can use it through the most popular email client (or client websites that allow you: Gmail now allows it through an add by name S / MIME, however, not yet fully functional in reception)
Outlook Express the default e-mail, however, 40-bit encrypted messages (SMIME v2). To set it to 168 is necessary to modify the following registry entry: Once you have your certificate you can use it through the most popular email client (or client websites that allow you: Gmail now allows it through an add by name S / MIME, however, not yet fully functional in reception)
1) run - run - type regedit
2) HKEY_CURRENT_USER \\ Identities \\ "codiceutente" \\ Software \\ Microsoft \\ Outlook Express \\ 5.0 \\
3) create DWORD key by name Encrypt Using 3DES
4) assign a hexadecimal value (active)
NB remember to backup the registry or the key before making any changes!
0 comments:
Post a Comment