Ridge Cook wrote:
> is it possible to set the preferred algorithm > in Thunderbird to also use AES for its S/MIME operations?
No. The S/MIME protocol is designed to obviate any such setting. When you receive a signed message from a correspondent, that message contains an enumeration of the ciphers supported by that correspondent's email software. Thereafter, when you send an encrypted message to that correspondent, your email software should pick the strongest algorithm and key size (for algorithms that support multiple key sizes) that is mutually supported.
> What is the default symmetric algo used in Thunderbird?
The strongest algorithm that is known to be mutually supported with your correspondent.
> Some certs have the preference set in them as a first choice (often 3DES)
Please show an example of such a cert and/or cite the relevant standard for the X.509 v3 certificate extension that contains that information.
/Nelson
_______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
