Nelson B. Bolyard wrote: > Jennifer Glick wrote: > >>Benjamin Johnson wrote: >> >>>It seems like an addition option of: >>> >>>Send encrypted to recipients with certificates and unencrypted to >>>recipients without certificates would be useful >>> >>Agree, but according to security team, that functionality is not currently >>implemented. >> > > Generally, you encrypt email when you are concerned that someone other > than the intended recipient of the email might see it, e.g. as it passes > through the network, or as it sits on some store-and-forward email server. > > Encrypting the message is intended to prevent people with the ability to > snoop on the network or on the email server disks from being able to make > sense of the email message. > > Sending both an encrypted and unencrypted copy of the message defeats the > purpose of the encryption, because it makes a plainly readable copy of the > message to unintended recipients. > > If one is going to send an unencrypted copy of the message, then what > purpose is served by also sending an encrypted copy? >
The unencrypted version might be staying on a internal corporate network and the encrypted version might be going over the internet. On the flip side maybe you are sending from the Internet and to multiple recipients, and you want the recipients that are on corporate networks to be encrypted to prevent snooping by corporate message filters. Additionally, if the messages are going to two recipients at different locations and one is encrypted, it reduces the likelyhood that it will be intercepted at the destination by 50%. Ben
