Page 1 of 1

Verisign Certificates and email encryption

Posted: Sat Dec 14, 2002 11:57 am
by Tony-San
I have found using a digital certificate to sign and encrypt my email to be far more seamless then using PGP in outlook and oulook express. Installing is a snap but it is a little tricky to assign a certificate to a particular account, but then..not really.

I got a free certificate from http://www.thawte.com just to try it out. It worked great but to get my name in it (as opposed to just my email address) I would have had to jump through some hoops. I decided to buy one for 15 bux from http://www.verisign.com .

I decided to go wtih high security, so whenver I use my certificate, I am prompted with a password. you don't have to do this, but I do. Anyway, it's a cool scene, worth checking out.

Posted: Sat Dec 14, 2002 12:01 pm
by Tony-San
Verisign doesn't make it easy to find the digital id section of their site, but here is the URL in case your interested in buying one as opposed to getting a free one from Thawte (just as good 128 bit encryption):

http://www.verisign.com/products/class1/index.html

Posted: Sat Dec 14, 2002 4:39 pm
by Deep Sea
Hello Tony.

Will you tell us more about email signing and why someone would want to do that?

me too

Posted: Sat Dec 14, 2002 9:03 pm
by gmattson
I've had PGP for years and never have been able to use it!

Posted: Sat Dec 14, 2002 10:27 pm
by Tony-San
The purpose of encrypting email is a no brainer... unless the email is encrypted with your public key, you cannot read it. So... if Big Brother gets bored with his new authority and just starts reading folks mail just for the hell of it, he'll have a hard time allocating funds to decrypt and read your mail. Also, mail in your inbox is also unreadable.

Signing mail validates that the email is from you and that it has not been tampered with. For example, if someone has a virus which sends mail from their computer as you and I see that it's from you but isn't signed, I would be suspicious of this email.

With a digital certificate you can sign or encrypt or sign and encrypt all of your emails and attachments.

Posted: Sun Dec 15, 2002 2:39 am
by Deep Sea

Code: Select all

The purpose of encrypting email is a no brainer... 
Right. One way around it is to not email the stuff you want kept secret. I have enough people keeping their eye on me that it doesn't concern me.

However, husbands and wives are cyber stalking their spouses -- snooping right into the very bowels of their most secretive privacy -- in the hopes of finding something, call it basic insecurity on their part, that they are snooping on their better/worse half, so like hiding oneself in the bathroom to attain personal privacy, maybe email has come to this.

I remember a while back, Tony, you were really concerned about wiping your disk and really more concerned that someone could read the erased data, even when doing a DES erase.

Guess what. Now with homeland defense they don't need a warrant to enter your house and confiscate your stuff.

Being naked may be indecent exposure, but we're all cyber-naked with our most secret parts in public view when it comes to the internet and for some that could be detrement exposure.



However, if the idea if digital signatures catches on, I'd go for it.

Thanx for taking the time to explain, Tony.

Posted: Sun Dec 15, 2002 1:13 pm
by Tony-San
Hey Allen, that wasn't my concern, that was someone else. I simply used PGP to do a freespace wipe. I still do occasionally.

Posted: Sun Dec 15, 2002 2:31 pm
by Deep Sea
Tony,

I know it wasn't your concern, and I apologize if you were offended if you thought I was directing my comments at you. I cherish your friendship too much for that bullsh!t.

Rather, it presented a juicy opportunity to regurgitate some of what I've read reacently in various cyber news articles and pointed that stuff out to help make some aware of what might be going on behind their backs, but definitely not you, Tony.

I'm interested in the digital signing, such as in the IUKF group mailings. There is one prime example where someone's mailbox gets corrupted and he inadvertantly, else someone emails out using his identity, viruses, trojans, etc. to everyone in his mailbox. I've received tons of 'em and fortunatly they are filtered-out before they can do damage -- so far.

Posted: Sun Dec 15, 2002 4:23 pm
by Tony-San
Give it a shot Allen. Verisign has a 60 day trial certificate.

Posted: Sun Dec 15, 2002 7:17 pm
by TSDguy
Are there any free versions of this, even if they're not as good? I love the idea-- a lot-- but I'm not that concerned about anyone out there wanting to read my emails about who my friend is dating now.

Posted: Tue Dec 17, 2002 11:32 am
by Tony-San
sure, get you a free one at www.thawte.com !