Re: OT: Email signing

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Arthur Pemberton wrote:


Could someone briefly fill me in on the if, why and how of email signing (I do not mean signatures). I am sure I can google the how, but I would like opions and experiences.


OK, I presume that you mean cryptographic signing. Message signing can be done with either SMIME or PGP. Both accomplish the same thing, and operate in virtually the same way.

Why sign? It's all about trust. If you reliably sign your messages, the people with whom you exchange messages can configure their mail client to trust the fingerprint of your certificate (or, they may trust someone who signed your certificate). They can trust that a message with your name on it, which has a valid signature, was written by you and has not been tampered with. They should also learn not to trust messages that have your name on it, but no signature.

Which method you choose probably will be influenced most by who, exactly, you want to be able to verify your signatures. SMIME uses, in large part, the same infrastructure that is already in virtually every mail client to support SSL connections. That's one of the reasons that SMIME is supported by nearly every major mail client available, out of the box. PGP does pretty much exactly the same thing, but requires an entirely separate infrastructure. I'm not aware of any major client that supports PGP by default; they require plugins, mostly. That gives SMIME a significant advantage if you want to sign messages, and have that information be useful to a wide audience.


[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux