Office Standardization. E-Mail Encryption Gateway. A Brief Guide for External Communication Partners.



Similar documents
Receiving Secure from Citi For External Customers and Business Partners

Options for encrypted communication with AUDI AG Version of: 31 May 2011

Prerequisite. Getting Started. Signing and Encryption using Microsoft outlook 2007

Security-Product by IT SOLUTIONS. security at the highest level JULIA. Security. Cloud Security

Prerequisite. Getting Started. Signing and Encryption using Microsoft outlook 2010

Using etoken for Securing s Using Outlook and Outlook Express

How do I see an encrypted INCISIVE MD for the first time?

Webmail Using the Hush Encryption Engine

User Guide May Using Certificates in Outlook Express

Installing your Digital Certificate & Using on MS Out Look 2007.

How To Set Up Your

Setting up secure communication with Ericsson. Guideline for Ericsson partners

Yale Software Library. PGP 9.6 for Windows

April PGP White Paper. PGP Universal 2.0 Technical Overview

CIPHERMAIL ENCRYPTION. CipherMail white paper

iq.suite Crypt - Server-based encryption - Efficient encryption for Lotus Domino

Configuring Outlook to send mail via your Exchange mailbox using an alternative address

Personal Secure Certificate

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

Encryption. How do I send my encryption key?

Configuring Outlook Express

User Guide Supplement. S/MIME Support Package for BlackBerry Smartphones BlackBerry Pearl 8100 Series

Instructions for Microsoft Outlook 2003

PaperClip. em4 Cloud Client. Manual Setup Guide

The Case For Secure

Sending an Encrypted/Unencrypted Message. Let's Begin: Log In and Set Up Security Questions. Create Additional ProMailSource Accounts:

Outlook Express POP Instructions - Bloomsburg University Students

Implementing Transparent Security for Desktop Encryption Users

TCS-CA. Outlook Express Configuration [VERSION 1.0] U S E R G U I D E

Secure Your with Encryption as a Service

CONFIGURATION AND SETUP USER GUIDE AND REFERENCE MANUAL

I. Configuring Digital signature certificate in Microsoft Outlook 2003:

Set Up Setup with Microsoft Outlook 2007 using POP3

How to use Certificate in Microsoft Outlook

Encryption Recipient Guidelines

IMAP and SMTP Setup in Clients

Unifying Information Security. Implementing Encryption on the CLEARSWIFT SECURE Gateway

Secure Frequently Asked Questions

Using PI to Exchange PGP Encrypted Files in a B2B Scenario

DJIGZO ENCRYPTION. Djigzo white paper

Quick Start Guide. Your New Account

PKI Contacts PKI for Fraunhofer Contacts

Using Voltage Secur

PrivaSphere Gateway Certificate Authority (GW CA)

Setting up Outgoing Mail (SMTP) Server of CS LoxInfo

Djigzo encryption. Djigzo white paper

Account Restrictions Agreement [ARA] - Required by LuxSci HIPAA Accounts

How To Protect Your From Being Hacked On A Pc Or Mac Or Ipa From Being Stolen On A Network (For A Free Download) On A Computer Or Ipo (For Free) On Your Pc Or Ipom (For An Ipo

HMRC Secure Electronic Transfer (SET)

To configure Outlook Express for your InfoMetrics address:

PGP Product Update Juha Ropponen

GlobalSign Solutions. Using a GlobalSign PersonalSign Certificate to Apply Digital Signatures in Microsoft Office Documents

User Guide Using Certificate in Microsoft Outlook Express

You may use port 587 if port 25 is blocked by your internet provider. This does not apply to customers using PolarComm internet.

Secure Part II Due Date: Sept 27 Points: 25 Points

Windows Mail POP Instructions - Bloomsburg University Students

QMU. QuickStartIT: QMU OWA (webmail) service

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on Mail Tab.

Texas Medicaid & Healthcare Partnership (TMHP)

Patriots Outlook Configuration

Using Your PGP Tool to Update Your Address Settings for Encrypted Messaging

Before starting to use the new system you will need to know the password to your e-wire account.

How to Send an Encrypted via KDADS' Outlook Client or Outlook Web Application

D . A reliable and secure online communication platform. Armin Wappenschmidt (secunet) More information:

PrestoFax User Guide Version 3.0

GroupWise Archive Migration Instructions

StreamServe . User Guide SP2 Rev A

3. On the Accounts wizard window, select Add a new account, and then click Next.

How to Pop to Outlook

Guide for Securing With WISeKey CertifyID Personal Digital Certificate (Personal eid)

Astaro Mail Archiving Getting Started Guide

MessageGuard 3.0 User Guide

The IceWarp SSL Certificate Process

IceWarp SSL Certificate Process

Adding Digital Signature and Encryption in Outlook

Encryption. Instructions for sending and retrieving an encrypted

USER GUIDE WWPass Security for (Outlook) For WWPass Security Pack 2.4

All existing accounts will be listed. 2. Click Add and select Mail to add a new account (see Figure 2). Figure 1. Figure 2

HMRC Secure Electronic Transfer (SET)

Webmail Access. Contents

SENDING WITH ENTRAPASS CORPORATE EDITION

Here are the steps to configure Outlook Express for use with Salmar's Zimbra server. Select "Tools" and then "Accounts from the pull down menu.

Alberni Valley IT Services Virtual domain information.

VAULTIVE & MICROSOFT: COMPLEMENTARY ENCRYPTION SOLUTIONS. White Paper

Ciphermail Gateway PDF Encryption Setup Guide

Encryption Procedures

WaveWare Technologies, Inc. We Deliver Information at the Speed of Light

RPost Outlook Quick Start Guide

IBM Lotus Protector for Mail Encryption. User's Guide

Knights Outlook Configuration

Migration Manual (For Outlook 2010)

Outlook Express IMAP Instructions - Bloomsburg University Students

Outlook Web Access User Guide

Setup Guide. network support pc repairs web design graphic design Internet services spam filtering hosting sales programming

Toll Free: International:

Setting Up Microsoft Outlook 2007 with GroupWise

Transcription:

Office Standardization. E-Mail Encryption Gateway. A Brief Guide for External Communication Partners. 1

A Brief Description of the Solution. All employees of Deutsche Telekom can use the E-Mail Encryption Gateway for either sending e-mails to any internal or external e-mail contacts they desire or for receiving and decrypting encrypted e-mails from those contacts. Encrypted e-mails can also be forwarded to all contacts involved and an encrypted reply can be sent. If an external contact has no S/MIME or PGP technology for encrypting e-mails, the encrypted e-mails will be made available in an SSL-secure Web application, referred to as "WebMail" below. An automatically generated notification e-mail will inform the external contact that he/she has received an encrypted e-mail. Using WebMail, he/she can then log in and, after authentication, read all of the encrypted e-mails. If required, the external contact can also configure the settings so that the encrypted e-mails are forwarded. The forwarded e-mails including attachments will be converted into encrypted PDF files that can later be decrypted using the password previously specified by him/her in the WebMail application. This is called "PushedPDF" technology. If an external contact already has an encryption technology (PGP or S/MIME), he/she can inform the E-Mail Encryption Gateway of the appropriate certificate or public PGP key so that the E-Mail Encryption Gateway can use it to encrypt and send e-mails using the corresponding technology in the futue. The encryption of the e-mails takes place on a nearly end-to-end basis, that is, the e-mails are already encrypted in the Outlook client of the Deutsche Telekom employee and possibly even re-encrypted by the E-Mail Encryption Gateway, depending on the technology used by the external recipient, for example when using the conversion required by PGP. 2

A Brief Description of the Solution. Figure 1: End-to-end encryption of e-mails All Deutsche Telekom employees can add a signature to their e-mails (with or without encryption) and send them to any internal or external contacts, or they can receive e-mails with signatures from those contacts and even validate digital signatures. Deutsche Telekom favors the use of S/MIME technology for the encryption and signature of e-mails. To avoid requiring external recipients to migrate from PGP to S/MIME, however, outgoing e-mails from the E-Mail Encryption Gateway can be PGP-encrypted and incoming e-mails can be converted from PGP to S/MIME. This will ensure a high level of transparency and flexibility for both internal and external communications. 3

Case 1: S/MIME Certificate or PGP Key Available. Figure 2: E-mail flow with existing S/MIME or PGP encryption keys 1. A Deutsche Telekom employee sends an external recipient a signed e-mail that is to be encrypted. 2. The e-mail is routed internally to the E-Mail Encryption Gateway. 3. The E-Mail Encryption Gateway verifies whether the external contact is already registered and whether his/her public key (S/MIME or PGP) is available. 4. If no S/MIME certificate or public PGP key is available for the external user, or it cannot be found via the integrated indexing services or key servers, the encrypted e-mail will be temporarily stored in E-Mail Encryption Gateway and the external user will be sent a notification e-mail in the following form. 5. If the recipient already has a S/MIME certificate he/she responds to the e-mail with a S/MIME-signed e-mail. This can be done by activating the Sign -Option in for example Microsoft Outlook. If the recipient uses the encryption technology PGP, he/she responds to the e-mail by sending a new e-mail with the public PGP key as an attachement. 6. The E-Mail Encryption Gateway verifies either the S/MIME certificate or the public PGP key as valid and stores the information in its key store. 4

Case 2: Neither S/MIME Certificate nor PGP Key Available. Figure 6: E-mail flow without an S/MIME or PGP key when using WebMail 1. A Deutsche Telekom employee sends an external recipient a (signed) e-mail that is to be encrypted by the E-Mail Encryption Gateway. 2. The e-mail is internally routed to the E-Mail Encryption Gateway. 3. The E-Mail Encryption Gateway verifies whether the external partner is already registered and whether his/her public key is available. 4. If no S/MIME certificate or public PGP key is available for the external contact or it cannot be found via the integrated indexing services or key servers, the encrypted e-mail will be temporarily stored in the E-Mail Encryption Gateway and the external contact will be sent a notification e-mail. 5. Since the external communication partner does not have a S/MIME certificate or a PGP key bundle, he/she can retrieve the encrypted e-mail by registering at WebMail with the information provided in the notification e-mail. This method allows the user to read the message in WebMail or to receive it as an encrypted PDF file. 5

Office Standardization. E-Mail Encryption Gateway. A Brief Guide for Communication Partners. Version: 01/12/11 Author Deutsche Telekom AG Office Standardization program Contact Website: http://os.telekom.de E-Mail: trust@t-systems.com 6

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information