Unsecured email offers many opportunities for someone to intercept it. This makes it unwise to send sensitive information such as credit card numbers or passwords.
Most modern email programs support encrypted email, with the notable exception of Netscape after version 4.75. Microsoft Outlook and Outlook express work fine. Later versions of AOL that use Outlook Express are also OK.
There are a number of steps involved in preparing for encrypted email. Don't worry, this is easier than it sounds.
Certificates and Keys.
Encryption uses two sets of keys: a public one to lock the information, and a private one to unlock it. The only reason that I mention this, is that both parties must have their own set of keys to send email in both directions. If you have someone's public key, you can send them encrypted email, but they cannot send in your direction without your public key.
Keys are maintained by a trusted third party called a Certifying Authority. You must sign up with one in order to use encrypted email. Thawte provides a free key program called the Freemail Web of Trust. You can also obtain keys through Verisign ($10 a year) among others.
To obtain a key, first sign up as a member of the Thawte Personal Certification Program. They will ask you a number of personal questions to help verify your identity. When you receive your membership logon and password, you will also receive a link to request a certificate. Follow the link, and the instructions. When they ask technical questions about the certificate, just select the default option. The certificate will contain both your public and private keys.
IMPORTANT! Certificates are tied to individuals and email addresses. You must be able to receive email at the address you will using. You must also be logged on as the same person that requested the certificate. This is usually not an issue, but your certificate will disappear if you logon to your computer as a different user.
Installation for Microsoft Outlook
Once you have picked up your certificate, you must let Microsoft Outlook know that it is there. In Outlook go to the Tools menu. Select Options. Click the Security Tab. Click the Settings button. Click OK, and you're done.
Sending Secure Email
Before you can exchange encrypted email, you must exchange keys with the recipient. You do this by clicking on the Options menu while composing a new email. Check the box that says Signed. That will send your certificate along with the email. Once they receive it, the recipient will now be able to send you encrypted email. You send encrypted mail by selecting both Signed and Encrypted in the Options menu.
Back to top.
|
