D
David C
Hello:
I encounter a problem with the 2007 Office Outlook version dealing with
email encryption.
The problem states as follows. Outlook silently sends my messages encrypted
using a less secure algorithm as specified in the Trust Center. I.e. I
require my messages to be encrypted using the AES-256 algorithm, but these
are sent using 3DES (168-bit key length only). My receipients can check the
actual algorithm used once they receive my encrypted emails.
Three questions now arise.
First, whenever Outlook sends at a lower security level my emails, it would
have been fair if it informed the user prior to actually sending sensitive
data over a network deemed insecure.
Second, why does OL stick to 3DES while I did set it to encrypt outgoing
emails with AES-256? Did anybody yet come across this issue? Or, did I miss a
caveat in enabling security in OL?
Third, are there still restrictions on encryption algorithm key lengths?
About my configuration: 32-bit Windows Vista Ultimate with SP1, 2007 Office
Enterprise Edition with SP1, latest patches to date applied.
Thanks for reading,
David C
I encounter a problem with the 2007 Office Outlook version dealing with
email encryption.
The problem states as follows. Outlook silently sends my messages encrypted
using a less secure algorithm as specified in the Trust Center. I.e. I
require my messages to be encrypted using the AES-256 algorithm, but these
are sent using 3DES (168-bit key length only). My receipients can check the
actual algorithm used once they receive my encrypted emails.
Three questions now arise.
First, whenever Outlook sends at a lower security level my emails, it would
have been fair if it informed the user prior to actually sending sensitive
data over a network deemed insecure.
Second, why does OL stick to 3DES while I did set it to encrypt outgoing
emails with AES-256? Did anybody yet come across this issue? Or, did I miss a
caveat in enabling security in OL?
Third, are there still restrictions on encryption algorithm key lengths?
About my configuration: 32-bit Windows Vista Ultimate with SP1, 2007 Office
Enterprise Edition with SP1, latest patches to date applied.
Thanks for reading,
David C