Please help me understand e-mail encryption RRS feed

  • Question

  • Hi,

    I will soon probably have to deal a little with Exchange, which I have no experience with. One of the things I need to understand is how e-mail encryption works. Because I already have a case when a Users is not able to read an encrypted e-mail and want to get to the bottom of it.

    I know how asymetric encryption works, that's a concept I am quite familiar with. My question is related to the way Exchange handles it.

    If I understand correctly, the process is as follows:

    1) User A selects the option to encrypt the message sent to User B

    2) Exchange server looks at the certificate, visible in the Published Certificates property in the AD object of User B, and encrypts the message using the Public Key found in that ceritificate.

    3) User B decrypts the message using the Private ey from the certificate in it's Private Store.

    My questions:

    1) Am I right about the process or is there something I'm missing?

    2) Do the Signing and Ecnryption certificates selected in Outlook Trust Center play any role in the process?

    3) What exactly will the encryption certificate be used for?

    4) What's the purpose of using different signign and encryption certificates?



    Saturday, February 10, 2018 7:21 PM


  • Hi,

    I consulted a friend of mine on how this works. 



    • Marked as answer by rozanw Tuesday, February 13, 2018 11:59 AM
    Tuesday, February 13, 2018 11:59 AM

All replies