Dr S N Henson wrote: > > The specification mentions using "high-grade" encryption. > > What about weak encryption using 40 bit RC2? Presumably this will still > be supported. > > However there should be some way to at least warn if a message is going > to be sent using weak encryption.
What's wrong with configuring the S/MIME ciphers as in Messenger 4.x today? But I'd suggest that in opposite to Messenger 4.x the weak ciphers should be turned off by default. This would avoid that the sender accidently sends weakly encrypted e-mail to sender with unknown S/MIME capabilities. Ciao, Michael.
