Decrypt Outbound Email
-
1. února 2012 14:12
I've been asked to verify how email could be recovered in the event someone has sent email to an external user and there is some sort of legal discovery required. We archive our email on Postini. I need to understand how I would go about collecting the public keys in order to decrypt outbound email from the archives.
I'm looking for some solution similar to PGP's Additional Decryption Key (ADK), but for Microsofts Certificate Services.
http://www.symantec.com/business/support/index?page=content&id=TECH149500
David Jenkins
Všechny reakce
-
2. února 2012 5:07Are you using any type of IRM (AD Rights Management Service) or S/MIME for Exchange? Are you using any third part products to encrypt your emails now?
JAUCG -
2. února 2012 14:18
We have a CA setup so I would say S/MIME. I'll have to look into AD RMS. We are in the testing stage right now to determine the best way to work with the Certificate Services and eMail. We are using Exchange 2007.
David Jenkins -
2. února 2012 15:42 I would recommend IRM (AD RMS). What do you have for Domain Controllers? Are they 2003, 2008, 2008 R2? Refer to this article about decryption: http://technet.microsoft.com/en-us/library/dd638140.aspx#decrypting
JAUCG- Označen jako odpověď David L. Jenkins 2. února 2012 15:44
-
2. února 2012 15:44
We have 2008 R2 DC's but still have some 2003 DC's so we aren't native if that matters. It does look like AD RMS is the way to go if the company wants to decrypt messages.
Thank you.
David Jenkins
.png)
