Email Encryption
Secure SMTP and MIME Email Encryption Software
Most email encryption involves public key cryptography. As a term, E-Mail Encryption often refers to both the authentication, encryption, and decryption of email messages. Some of the best known email encrypting protocols include S/MIME, TLS, OpenPGP, mail sessions encryption, and Identity Based Encryption.
S/MIME, which stands for Secure Multipurpose Internet Mail Extensions is one of many standards for signing email in the MIME format. It uses individual key certificates either from an in-house certificate authority or from a public CA that uses separate private keys. One of the problems with this type of encryption is that it can also encrypt viruses and malware right past the antivirus program, because the virus is encrypted and therefore undetectable. Some companies that offer this type of encryption free are CAcert and Thawte, but usually membership is required.
TLS, formerly SSL, provides security for TCP/IP networks like the internet. When it comes to email, the handshake protocol between computers allows for the encrypted email to be sent at the highest TLS protocol supported by both systems.
Open PGP is still being actively developed under the RFC4880 specification and many email client services provide compliant email security. There are freeware versions of OpenPGP in the form of GNU Privacy Guard (or GnuPG).
Identity Based email encryption uses unique personal identification like an email address as the public key.
For Mail Sessions Encryption, a secure SMTP extension is layered on top of the standard SMTP connection. This provides protection against sniffing, but but since the encryption takes place between relays it is not classic encryption.
.
.
Notes and Special Information
Special note: This site is in beta mode and will be larger source for encryption related information (both kinds) in the year 2009.