Hi, On 02/11/2014 08:56 AM, Femitha Majeed wrote: > Please help me by answering these newbie questions. > > 1. In the case of sending out emails to a large number of customers, > how does S/MIME encryption work?
An email will be S/MIME encrypted to all recipients for which there is a valid S/MIME certificate. For recipients for which there are no valid S/MIME certificate, PDF will be used or depending on the encrypt mode, if PDF encryption is not enabled, the email will be sent unencrypted or bounced back to sender. > 2. How do we ensure that the incoming emails are encrypted? Is it > only through the Reply link in the email that we sent first? What > happens when the customer wants to initiate an email conversation? The reply link will be available for PDF encryption so there has to be an email sent at least once. There is currently no option to initiate a reply by a recipient without receiving a PDF first. The reply link in the PDF is secured using cryptographic algorithms (HMAC) to make sure that a reply link cannot be "spoofed" > 3. We have setup djigzo as a send connector to our exchange server, > do we require receive connector too? If you want to receive S/MIME encrypted email and you want to have the gateway decrypt the email, then incoming email should be handled by the gateway first and therefore a receive connector is required as well. > 4. S/MIME encryption is end-to end, isnt? How does the application > gateway handle this? It depends on how you define end-to-end. With a gateway the end point is the gateway. So for example these two options can be considered end-to-end. Gateway <-> Internet <-> Outlook Gateway <-> Internet <-> Gateway However some would argue that a gateway is not real end-to-end since it handles encryption for multiple users. Kind regards, Martijn Brinkers -- DJIGZO email encryption _______________________________________________ Users mailing list [email protected] https://lists.djigzo.com/lists/listinfo/users
