Scribd
Upload
64 views10 pages

5 Smime

S/MIME (Secure/Multipurpose Internet Mail Extensions) is a security enhancement to MIME that adds encryption and digital signatures to email. It allows people to securely exchange different file types over email, including executable files, text with foreign characters, and large attachments. S/MIME uses public key cryptography to encrypt messages and sign them with digital signatures to authenticate the sender and verify message integrity. It supports a variety of cryptographic algorithms and certificate formats to provide these security functions for email in a standard way.

Uploaded by

WHATSAPP STATUSLY
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPT, PDF, TXT or read online on Scribd
64 views10 pages

5 Smime

S/MIME (Secure/Multipurpose Internet Mail Extensions) is a security enhancement to MIME that adds encryption and digital signatures to email. It allows people to securely exchange different file types over email, including executable files, text with foreign characters, and large attachments. S/MIME uses public key cryptography to encrypt messages and sign them with digital signatures to authenticate the sender and verify message integrity. It supports a variety of cryptographic algorithms and certificate formats to provide these security functions for email in a standard way.

Uploaded by

WHATSAPP STATUSLY
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPT, PDF, TXT or read online on Scribd
You are on page 1/ 10

S/MIME

MIME (Multipurpose Internet Mail


Extensions)
• MIME extends the SMTP protocol by permitting users
to send binary files using the basic email system.

• MIME (Multi-Purpose Internet Mail Extensions) is an


extension of the original Internet e-mail protocol that
lets people use the protocol to exchange different
kinds of data files on the Internet: audio, video,
images, application programs, and other kinds, as well
as the ASCII text handled in the original protocol, the
Simple Mail Transport Protocol (SMTP).
Why MIME ?
• Following are limitations of the use of SMTP
which could be solved by MIME
– SMTP can not transmit executable file or other
binary objects.
– SMTP can not transmit text data that includes
national language characters
– SMTP servers may reject mail over certain size
– SMTP gateway have translation problems
MIME Overview

MIME add five new fields in header


• MIME Version
• Content Type
• Content Transfer Encoding
• Content ID
• Content Description
MIME Content Type
S/MIME (Secure/Multipurpose Internet
Mail Extensions)
• security enhancement to MIME email
– original Internet email was text only
– MIME provided support for varying content types
and multi-part messages
– with encoding of binary data to textual form
– S/MIME added security enhancements
• have S/MIME support in many mail agents
– eg MS Outlook, Mozilla, Mac Mail etc
S/MIME Functions
• enveloped data
– encrypted content and associated keys
• signed data
– encoded message + signed digest
• clear-signed data
– cleartext message + encoded signed digest
• signed & enveloped data
– nesting of signed & encrypted entities
S/MIME Cryptographic Algorithms
• digital signatures: DSS & RSA
• hash functions: SHA-1 & MD5
• session key encryption: ElGamal & RSA
• message encryption: AES, Triple-DES, RC2/40
and others
• MAC: HMAC with SHA-1
• have process to decide which algs to use
S/MIME Messages
• S/MIME secures a MIME entity with a
signature, encryption, or both
• forming a MIME wrapped PKCS object
• have a range of content-types:
– enveloped data
– signed data
– clear-signed data
– registration request
– certificate only message
S/MIME Certificate Processing
• S/MIME uses X.509 v3 certificates
• managed using a hybrid of a strict X.509 CA
hierarchy & PGP’s web of trust
• each client has a list of trusted CA’s certs
• and own public/private key pairs & certs
• certificates must be signed by trusted CA’s

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy