Options for encrypted e-mail communication with AUDI AG Version of: 31 May 2011 1
Options for encrypted e-mail communication with AUDI AG Confidential information may only be transmitted in encrypted form over the Internet from and to AUDI AG. We offer our suppliers and partners the following options with regard to encrypted e-mail communication with AUDI AG: 1 Permanent transport encryption (TLS / Transport Layer Security) Useful if employees of a partner company exchange confidential e-mails on an occasional to frequent basis with employees of AUDI AG and/or with partner companies that already have PGP keys or S/MIME certificates. 2 PGP keys or S/MIME certificates Useful if numerous different employees of a partner company frequently exchange confidential e-mails with various employees of AUDI AG. 3 Encrypted PDF file Necessary if a partner company has thus far implemented neither option 1 nor option 2. With this method, confidential e-mails are transmitted from Audi to the partner company by means of an encrypted PDF file. 2
1. Permanent transport encryption (TLS / Transport Layer Security) Principle: Establishing a permanently active, secure e-mail connection between a partner company and AUDI AG. This is done with the aid of transport encryption between two e-mail gateways (MTA, Mail Transfer Agents). Application: If numerous employees within your company frequently exchange confidential e-mails with AUDI AG. The entire e-mail traffic from and to AUDI AG is automatically carried out with transport encryption, without requiring further input on the part of the user. Even if other security measures are used incorrectly (e.g. PGP encryption), e-mails are still transmitted securely. None Certificate costs for securing the e-mail communication Costs for adapting the e-mail gateway An application has to be made to AUDI AG for connection via permanent transport encryption (TLS / Transport Layer Security). Further information can be found in the document e-mail encryption with AUDI AG. 3
2. PGP keys or S/MIME certificates Principle: Encryption of individual e-mails on the basis of established cryptographic standards. To encrypt and decrypt e-mails, both the sender and recipient must have suitable key materials and/or a certificate, which they must have either published and/or exchanged. Application: If you have PGP keys or S/MIME certificates and/or you only exchange confidential e-mails occasionally with AUDI AG. Existing PGP keys or S/MIME certificates can be used. PGP keys or S/MIME certificates can also be used for communication with other companies. In most cases, requires additional input for the user when sending / receiving e-mails (key management) Certificate costs If applicable, licence costs Further information on encryption by means of PGP or S/MIME can be found in the document e-mail encryption with AUDI AG. If you do not already have PGP keys / S/MIME certificates, please contact your IT Support department. 4
3. Encrypted PDF file Principle: Encryption of individual e-mails by generating an encrypted PDF file. In order for partners to be able to decrypt e-mails from AUDI AG, they need to have suitable software for opening PDF files (e.g. Adobe Reader). Application: If you only receive confidential e-mails very occasionally from AUDI AG and there is no other secure transmission path, you will be sent an e-mail with an attached PDF file. Hardly any investment in IT infrastructure necessary. Transmission of confidential data in compliance with the rules is ensured. High level of input required for users when sending / receiving e-mails, since for each encrypted e-mail a new password has to be exchanged separately by phone / text message. High requirements in terms of password management, as old e-mails can only be read with the corresponding password. None In order to decrypt encrypted PDF files, you require suitable software (e.g. Adobe Reader). Please contact your IT Support department about this. If you are unable to see attachments sent by AUDI AG, click in Adobe Reader on: View Navigation Tabs Attachments 5