Friday, April 30, 2010

Create a Digital Certificate for Email

Now-a-days, it is most convenient to send and receive letters and documentation through the use of email. Unfortunately, important emails containing sensitive information can be stolen or read by someone unintended. Though this is rare, it does happen. Big businesses go to strict measures to insure that their data is kept safe. They resort to embedding digital certificates into sent emails, which insures that emails are not tampered with during transit and that the message is authentic. Digitally signed messages can even be encrypted to prevent unauthorized people from seeing it.
I recently stumbled upon a website called Comodo. It specialized in online computer security offering anti-virus, firewall, SSL certificates, TrustConnect®, and more online solutions. I was surprised by the fact that it offered many free products for Home and Home Office use. One particular product that caught by eye was the free email certificate, so I decided to give it a try. (Note: This is only free for Home and Home Office Use only.)

Click Here for Free Email Certificatge
Obtaining an email certificate from Comodo© is really easy. I would recommend using Windows Internet Explorer, Apple Safari, or Mozilla Firefox when filing for a free certificate. Google Chrome will not work and cause the webpage to fail. The first step is to fill out details for your personal certificate including your first and last name, email address, and country. Do not make this information up! When you send an email to someone using your certificate, it has to correspond to your name and email (or it may seem shady to the recipients.) You will also need to select a key size and revocation password. I recommend using the highest grade key because it is the most secure. The revocation password allows you to invalidate or revoke your email certificate if you suspect that is has been stolen or is being used by someone other than you. Once you have all the information filled out, you need to read the license agreement and agree to its terms. Shortly after, you should receive a verification email with steps on how to install your new email certificate. The email should contain a link to download the certificate. The certificate should automatically download to your system once you open the link. Below I have written the steps required to use the certificate on certain email clients.

Windows Live Mail (Version 14):

  1. Open Windows Live Mail, and create a new message. (The certificate should automatically be installed, if not see step 3-4)
  2. Press ALT+T to bring up the tools menu and select Digitally Sign. If you want to encrypt the email, select Encrypt. (Note: Only recipients with your private key can decrypt your email. Usually though, only people sending you sensitive emails encrypts the message using only your public key. You can send recipients your public key through the export wizard in tools→safety options→ security tab→digital IDs window.)


  3. Go to tools, safety options, the security tab, and click on the Digital IDs button.
  4. Press the import button, select your certificate, and follow the Import Wizard’s Steps.
Mozilla Thunderbird:
  1. Make sure your certificate was exported and open Mozilla Thunderbird.
  2. Go to tools, options, advanced, certificates. Press the View Certificates button.
  3. Under the Your Certificates tab, press the Import button and select your certificate unless it is already listed. Type your password if necessary.
  4. Then when creating a new message, use the security button located in the toolbar to digitally sign or encrypt your email.
Microsoft Outlook:
  1. Open Outlook and create a new message. (The certificate should automatically be installed, if not see step 4 or 5)
  2. In Outlook 2007, in the message, on the Message tab, in the Options group on the ribbon, click the Encrypt Message Contents and Attachments button . In Outlook 2002 and 2003, when composing a message, click Options, Security Settings. Select the Encrypt message contents and attachments check box.To change additional settings, such as choosing a specific certificate to use, click Change Settings. Click OK three times.
  3. Compose your message and send it.


  4. If using Outlook 2003 or 2002, go to this address to learn about importing email certificates. http://www.globalsign.com/support/personal-certificate/per_outlook03.html
  5. If using Outlook 2007, go to this address to learn about importing email certificates. http://www.globalsign.com/.../per_outlook07.html 
Apple Mail:

  1. Install your certificate. If you use Apple Safari as your web browser, the certificate will be located in the downloads folder. A dialog will pop-up asking for you confirmation to add the certificate. Press OK.
  2. If you use Apple Mail, you should have two new options when composing a message that will allow you to encrypt and decrypt your emails.

2 comments:

comdo is a good site, thanks for the explanation, it can get very complicated sometimes, so thanks for the post!

Post a Comment

Share

Twitter Delicious Facebook Digg Stumbleupon Favorites More