RSSThis page deals with tools and methods that add encryption, digital signatures, or rights management to individual messages. For tools dealing with securing Microsoft Outlook and Microsoft Exchange data with folder and user permissions, see:
To add encryption and security signatures to Exchange messages on the Internet, you can use either PGP (Pretty Good Privacy) or S/MIME (Secure MIME.) S/MIME support is built into Outlook, starting with Outlook 98. See:
- OL2000 – Encryption and Message Security Overview
- OL2002 Encryption and Message Security Overview
Choose Tools | Options | Security. You can add S/MIME support to earlier versions with third-party utilities. CW users note: OL2000 (CW): Rich Text Signed Messages Are Always Sent As HTML. With Outlook 97, you can tell that you’ve received an S/MIME message if it has an attachment with one of these extensions:
| .p7s | Signed, but not encrypted |
| .p7c | Certificate only, no digital signature or encryption |
| .p7m | Signed and encrypted. Cannot be read except by an S/MIME client |
Outlook 2000 SR-1/1a adds support for S/MIME version 3, but most features need to be activated via Windows registry settings.
Public key servers and other services are listed at Secure E-mail Services
Tools and utilities which do not fit any of the above categories are list at Encryption and Message Security Tools
S/MIME Encryption
| Tools | |
|---|---|
Email Classifier labels enforce the organisation's rules on handling and release of email, automatically invoking other technologies such as encryption or rights management. | |
With MessageLock, you can encrypt your email message and/or file attachments using encryption as strong as AES-256 bit (U.S. Government standard). Or you can send a self-decrypting .exe file that will prompt the recipient for a password before decrypting the message. MessageLock can also collect and manage your passwords, both for sending and receiving encrypted files. This allows MessageLock to encrypt with a single click, and decrypt inbound messages automatically. Also adds integrated Zip Compression. For Outlook 2000 through 2007. | |
Mirracrypt integrates seamlessly with Outlook 2003 & 2007 to provide powerful Sender-to-Receiver Email Encryption that is convenient and easy-to-use. Mirracrypt is the perfect add-on program for any Outlook user who requires privacy & security. | |
For Service Release 1 only. Not needed for Windows 2000. | |
Component of military messaging client based on Outlook supports S/MIME v.3 encryption and signatures. | |
SecurExchange S/MIME is an Exchange Server component that will automatically digitally sign and/or encrypt mail that meet predefined event or message or attachment content policy conditions. SecurExchange SMIME uses the S/Mime and X.509 Certificate standard and is completely transparent to internal users, thus ensuring compliance to corporate or regulated policies and thereby protecting sensitive information outside of your organization. | |
For Service Release 1 only. Not needed for Windows 2000. | |
PGP Encryption
| Tools | |
|---|---|
cGeep Pro has been designed to automate and simplify encryption actions. Messages are decrypted automatically and attachments are decrypted in one click within Outlook. You are prompted only once for your decryption passphrase during each Windows session, it won’t be requested again for any file and email decryption. cGeep Pro is fully OpenPGP compliant. | |
"Pretty Good Privacy" encryption, available in both free and commercial versions. See: OAER Outlook Stops Responding and You Receive an Error That References the Pgpexch.dll File | |
Shell for PGP security that works with Microsoft Outlook, as well as Exchange. Download PGPCLK35.ZIP | |
More Information
- Compression Tools — Some of these tools can encrypt as well as compress attachments.
- Crypto Law Survey — Encryption of e-mail is not universally legal. This site tracks encryption law around the world.
- X.400 Services
- OL2002- Exchange 2000 Account with Revoked Security Can Send and Receive E-mail
- Outlook S/MIME Vulnerability
- OL2002 Recipients Cannot Read Messages When 168-Bit (3DES) Encryption Is Enabled — discusses UseAlternateDefaultEncryptionAlg registry value
- You Cannot Send Encrypted E-Mail Messages to a Contact While You Are Working Offline — hotfix available for Outlook 2002
- Windows Prompts You for Your Password Multiple Times When You Use Outlook If Strong Private Key Protection Is Set to High — hotfix available for Outlook 2002
- Quick Start for SMIME in Exchange Server 2003
- OL2002 Recipients Cannot Read Messages When 168-Bit (3DES) Encryption Is Enabled
- Signed E-Mail Message Displays the Incorrect Sending Address
