Presentation is loading. Please wait.

Presentation is loading. Please wait.

E-mail Security using Encryption Security Features Message Origin Authentication - verifying that the sender is who he or she says they are Content Integrity.

Published byVincent Skinner Modified over 8 years ago

Similar presentations

Presentation on theme: "E-mail Security using Encryption Security Features Message Origin Authentication - verifying that the sender is who he or she says they are Content Integrity."— Presentation transcript:

1 E-mail Security using Encryption Security Features Message Origin Authentication - verifying that the sender is who he or she says they are Content Integrity - verifying that the message was not changed after sender sent it Content Confidentiality - making certain that only the intended recipient reads the message Proof of Delivery - making certain that the message was delivered Continued... 1 2 3 4

2 E-mail Security using Encryption Security Features Message Sequence Integrity - making certain that all messages were delivered in proper order. Non-repudiation of Origin - being able to prove that sender sent a message. Non-repudiation of Delivery - being able to prove that a recipient got a message. Continued... 5 6 7

3 E-mail Security using Encryption Security Features Message Security Labeling - labeling a message with handling instructions. Message Flow Confidentiality - making certain no one knows who you exchange mail with. Secure Access Management - making certain no one uses your e-mail system without being authorized. 8 9 10

4 E-mail Security using Encryption Operation All secure e-mail systems work roughly the same way. –Calculate a message digest of the message. –Encrypt the message digest with sender’s private key. –Encrypt the mail with a session key (random). –Encrypt the session key with receiver’s public key.

5 E-mail Security using Encryption Operation Receiver must: –Decrypt session key with the receiver’s private key. –Decrypt the message with session key. –Decrypt message digest with the sender’s public key. –Calculate a message digest and compare to the one that was sent. Encrypted message digest serves as both signature and integrity check.

6 Sender Functions: Email message Create Message Digest Private Key Encrypt MD with Sender’s Digital Signature Email message Encrypt Bundle with Session Key (Random Number) Digital Signature Email message Encrypt with Receiver’s Public Key { SEND } 1 2 Bundle 3 4 5 6 7 1 2 3 4 Set Reply Request 6 5 SN 8 9 10 Confidential Encapsulate Header Require Private Key to unlock Workstation SN Confidential SN Confidential Message Sequence No Security Labeling BUSINESS PROTOCOL

7 Receiver Functions: Digital Signature Email message { } Receive Decrypt session key with Receiver’s Private Key 1 Decrypt Bundle with Session Key 2 Digital Signature Email message Bundle 3 Public Key Decrypt MD with Sender’s Message Digest Create Message Digest 4 Email message SN Confidential SN Confidential 0 = { 5 6 Read Message Compare MD’s SN Confidential 7 Repeat Process in other direction for Non-Repudiation of Delivery BUSINESS PROTOCOL

Download ppt "E-mail Security using Encryption Security Features Message Origin Authentication - verifying that the sender is who he or she says they are Content Integrity."

Similar presentations

A less formal view of the Kerberos protocol J.-F. Pâris.

A less formal view of the Kerberos protocol J.-F. Pâris.
Web Service Security CS409 Application Services Even Semester 2007.

Web Service Security CS409 Application Services Even Semester 2007.
Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.

Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.

Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.
Chapter Extension 23 SSL/TLS and //https © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke.

Chapter Extension 23 SSL/TLS and //https © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke.
Overview of Digital Signatures Introduction To Networks and Communications (CS 555) Presented by Bharath Kongara.

Overview of Digital Signatures Introduction To Networks and Communications (CS 555) Presented by Bharath Kongara.
Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.

Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.
Digital Signature Xiaoyan Guo/102587 Xiaohang Luo/104446.

Digital Signature Xiaoyan Guo/ Xiaohang Luo/
COEN 351 Non-Repudiation. A non-repudiation service provides assurance of the origin or delivery of data in order to protect the sender against false.

COEN 351 Non-Repudiation. A non-repudiation service provides assurance of the origin or delivery of data in order to protect the sender against false.
Cryptography 101 Frank Hecker

Cryptography 101 Frank Hecker
1 Lecture 18: E-Mail Security issues specific to email security key management services –privacy –integrity/authentication –nonrepudiation/plausible deniability.

1 Lecture 18: Security issues specific to security key management services –privacy –integrity/authentication –nonrepudiation/plausible deniability.
31.1 Chapter 31 Network Security Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.

31.1 Chapter 31 Network Security Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
MT311 Java Application Development and Programming Languages Li Tak Sing ( 李德成 )

MT311 Java Application Development and Programming Languages Li Tak Sing ( 李德成 )
Pretty Good Privacy by Philip Zimmerman presented by: Chris Ward.

Pretty Good Privacy by Philip Zimmerman presented by: Chris Ward.
Chapter 14 Encryption: A Matter Of Trust. Awad –Electronic Commerce 2/e © 2004 Pearson Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic.

Chapter 14 Encryption: A Matter Of Trust. Awad –Electronic Commerce 2/e © 2004 Pearson Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic.
AQA Computing A2 © Nelson Thornes 2009 Section 6.4 1 Unit 3 Section 6.4: Internet Security Digital Signatures and Certificates.

AQA Computing A2 © Nelson Thornes 2009 Section Unit 3 Section 6.4: Internet Security Digital Signatures and Certificates.
Security Keys, Signatures, Encryption. Slides by Jyrki Nummenmaa ‘

Security Keys, Signatures, Encryption. Slides by Jyrki Nummenmaa ‘

Similar presentations

Ads by Google