Re: [Fed-Talk] encrypting e-mail using DoD CAC
Re: [Fed-Talk] encrypting e-mail using DoD CAC
- Subject: Re: [Fed-Talk] encrypting e-mail using DoD CAC
- From: Shawn Geddis <email@hidden>
- Date: Thu, 19 Jan 2006 13:56:14 -0500
On Jan 19, 2006, at 1:40 PM, Stephen Board wrote:
I have figured out signing e-mail. When I try to encrypt mail,
Mail.app tells me that there are no certificates with my email
address in my Keychain so therefore I cannot encrypt the message.
Does anyone know how to get Mail.app to reference the SmartCard as
the source of the encryption cert?
Thanks,
Stephen Board
email@hidden
Digitally "Signing" a message requires that the sender have a valid
Cert (usage digital signature) and the corresponding Private Key.
Digitally "Encrypting" a message requires that the sender have a
valid public Cert for the Recipient.
Standard SMIME - PKI ....
The message you got indicates that you do not have either a locally
stored (in a keychain) Public Cert for the recipient or an accessible
Public Cert via an LDAP lookup (configured via Directory Access).
The ability for you to send SMIME (Signed & Encrypted) does not
require any "Configuration". It just requires that your system has
access to and can validate your certificate and the recipient's
certificate against the sending and receiving email addresses. If
the email addresses do not match (which includes case sensitivity)
the use of the cert/key will be denied -- again, standard and
adherence to ratified SMIME RFCs.
- Shawn
___________________________________________
Shawn Geddis
Security Consulting Engineer
Apple Enterprise Division
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden