Unencrypted messages can be hijacked in transit and read or altered.If the mail is not digitally signed,you can’t be sure where it came from. There are many options for securing e-mail,all with a few strengths and probably more weaknesses. Let’s take care of the easy decisions.Secure/Multipurpose Internet Mail Extensions(S/MIME)should be the message encryption and digital signature format because it’s the accepted standard and is built into leading e-mail clients such as Microsoft Outlook 98/2000 and Lotus Notes R5.Yet a standard such as S/MIME only takes you so far.Each vendor has implemented its own interpretation of S/MIME,which makes interoperability problematic.This drawback is exacerbated by the emergence of S/MIME Version 3 in the newest e-mail clients,which again could create interoperability issues. The path of least resistance is to get an e-mail security gateway, which is analogous to a firewall for e-mail.Every message going in or out pases through the gateway,allowing security policies to be enforced (where and when messages can be sent),virus checking to be performed,and messages to be signed and encrypted. One drawback of the gateway approach is that it doesn’t provide user-based security.For example,the gateway encrypts outbound messages so recipients can verify they came from your company,but recipients can’t prove from whom they came. Client-based methods use your private key to sign messages(proving it came from you),which is a more granular level of security,but they have weaknesses as well.They need to be configured on each desktop,which includes issuing a digital certificate to each user (for encryption and digital signature),and ensuring that a proper security profile is configured within the e-mail client. There are also a number of Web-based secure mail services that keep all messages within their environment at all times to ensure security.You use a secure site on the Internet to compose a message.Once you hit“Send”,the site encrypts and stores the message on its site,and sends the recipient an e-mail notification that a secure message is waiting.The recipient links to the site, provides a shared secret for authentication,and accesses the message via Secure Sockets Layer. Unfortunately,this method does not work with existing enterprise e-mail systems. The stickiest issue is building a directory of digital certificates.This directory holds the certificates needed to encrypt messages to a recipient.Internally,building the directory may not be a big deal because all certificates for a company can be published in a central Lightweight Directory Access Protocol server,but externally this causes many problems.You will need to establish an agreement with a recipient’s organization to ensure access to the right digital certificates.This process, however, creates more user training issues and adds complexity to e-mail communications. Although there is technology available for secure e-mail, widespread deployment is still problematic. However,as more companies and regular e-mail users see the need to secure their messages,the use of digital certificates will one day become a transparent part of your everyday activities.
