Hi, If i build up a PKI infrastructure and use digital certificates for signing as well as encrypting e-mails. Then how can i scan e-mails floating around in the network for viruses etc. My mailing filtering gateways won't be able to open them. I see two options to it:
1) Have strong desktop antivirus which will scan the mails before it gets encrypted or after decryption. Need info on products which can do this job the best for different mailing clients. I m not sure how good trend micro desktop anitvirus would be able to do. 2) The other option is what i read in sans site. To install plugins on user mailing clients so that whenever they send an encrypted mail a copy of that mail encrypted with mailing gateway public key to is also bcc to mailing gateway. The mailing gateway opens up and check for virus etc, and take actions accordingly. But this fails when an encrypted mail comes from external world. are there any other good resources info available on PKI and things like this....also i m looking at key recovery issues etc...and more concepts ..like where the key pair is generated ( by the CA or the users desktop requesting for the certificate) and when you apply for a certificate you only send your public key not the private key, I mean standars like PKCS10, PKCS7 etc TIA rgds Madhur Nanda _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
