Can't digitally sign and encrypt email any longer.

Similar Messages

• Digitally Signing and Encrypting Email

  Hi,
  I have an iPhone 3GS and I cannot find any setting or application that allows me to import a root certificate onto the phone to digitally sign or encrypt outgoing email.
  Does iPhone support this?

  I installed my digital certs by just emailing them to myself then clicking the attachment. Additionally, you can use the new Enterprise Configuration utility to push these out.
  I however, have not been able to figure out how to digitally sign or encrypt outgoing email. Looks like Apple and the iPhone still has a way to go with Enterprise level features.

• Handling digitally signed and encrypted emails

  Hi all,
  Is it possible to handle digitally signed emails with LiveCycle ES?
  And what about encrypted emails?
  Sincerely
  Kim Christensen

  LiveCycle does not handle signed or encrypted emails out of the box.
  You could develop a component to do this, or you could get someone to develop it for you.
  Email us at info-at-avoka.com if you'd like to discuss further.
  Howard
  http://www.avoka.com

• Encoding configuration for signed and encrypted emails

  I have a 8820 device (no BES server)  - I have certificates downloaded and trust on the device.  I can attach the requisite certificates to the message, but I do not have the option to select signing or encrypting encoding.  the menu does not give me this option.  I have the S/MIME package installed.  Any thoughts / pointers?

  The S/MIME support package is only supported with a BES. You might try Djigzo for BlackBerry. Djigzo for BlackBerry is an add-on to the Djigzo Email Encryption Gateway which can be used to send and receive S/MIME digitally signed and encrypted email from a BlackBerry smartphone. An installation of the Djigzo gateway is required.
  Djigzo for BlackBerry and the Djigzo gateway is open source and can be freely used.
  For more information see www.djigzo.com
  Djigzo open source email encryption

• Sap PI-xml Digital Signing and encryption in PI-ehp1

  Hi Experts,
  Our Business scenario is sap R/3 (sender)>rfc data to PI and to webservice(receiver) using rfc and soap adapters
  The communication channels are secured by snc/ssl.
  Now the issue is PI have to send digitally sign and encrypt xml messages to receiver and I got no clue how to do this.
  Experts please advise.
  We have to Digitally sign and encrypt xml messages in PI
  1)can we use SAML or Ssfdata xml..if so how to use them,can you send me some documents with screen shots so that i can configure the same in PI
  We used adepative tool but it does not support Dsigning
  2)Please advise the correct procedure
  3)how to develop a adapter user module and how to call it for testing purpose...please advise
  O/s:windows
  PI EHP1 7.1
  DB:oracle
  PLEASE HELP
  Thanking you
  Pooja

  Hi Experts,
  Please Advise for my above querys
  1)I tried to develop a EJB project and generate EAR file and depoly it in J2ee server and create adapter modules to call It..however I tried to use a document provided my sdn http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/c0b39e65-981e-2b10-1c9c-fc3f8e6747fa?quicklink=index&overridelayout=true................however I am unable to see the options provided ,unable to create EAR project and unable to see deploy option,please can you share a correct document irrespective of nwds SP level
  2)Apart from giving JNDI name in module tab,what else should be mentioned for a small test message request/response
  3)How to call the adapter for testing purpose apart from monitoring audit logs
  Please Advise Experts
  Thanking you
  Pooja

• Signed and Encrypted Emails

  Hi all,
  I'm having issues with viewing Signed or Signed & Encrypted emails, I'm using iOS 4.1 and have added my email certificates using IPhone Configuration Tool.
  Any help would be good.
  Thanks
  Greg

  LiveCycle does not handle signed or encrypted emails out of the box.
  You could develop a component to do this, or you could get someone to develop it for you.
  Email us at info-at-avoka.com if you'd like to discuss further.
  Howard
  http://www.avoka.com

• Digital Signatures and Encryption in Yosemite Mail

  After upgrading to Yosemite, I am having difficulty using the Mac Mail app to send digitally signed and encrypted email.
  Before the upgrade to Yosemite, I was able to send signed and encrypted emails using certificate/keys in my keychain using both the Mac Mail app and Microsoft Outlook 2011 for Mac.
  After upgrading, I am still able to send signed and encrypted message in Outlook, but the Mac Mail app gives the following error when I attempt to send a signed email:
  'You don’t have a trusted certificate in your keychain that matches the email address “XXXX@XXXX”. Without a certificate, you can’t sign messages sent from this address.'   (Actual name replaced)
  When I look at my certificates in my keychain, a certificate is available with "Usage: Digital Signature" that has the email address from the error message "XXXX@XXXX" with exact case in the RFC 822 Name.
  Another interesting piece of data that might help track this down is that when I first launch the Mac Mail application, the Mac Mail application is able to successfully decrypt emails that have been previously sent encrypted to me.  HOWEVER, after I attempt to send an email and get the "You don’t have a trusted certificate..." error message, these emails are no longer able to be decrypted.  I get the "Unable to decrypt message" header above the message and the content of the message is just a "smime.p7m".  If I close the mail application and restart it, these encrypted message are once again decrypt-able until I attempt to send a message.
  It almost seems like things are working until mail tries to access the keychain.
  I have attempted to delete my certificate and keys from my keychain and then adding those items again.
  I have attempted to close the mail application and reopen it.
  I have attempted to reboot my computer.

  1.  I want to confirm that this is still an issue for me in 10.10.1 and mail Version 8.1 (1993)
  2.  I have another data point.
  At my office I have wired networking and wireless networking available.  Primarily I utilize the wired networking for access to network drives, etc.
  When using the wired networking, I experience all the problems that have been catalogued in this thread.  Can't sign, can't encrypt, can't close the compose window after the mail program fails to find my certificate.
  However, when I switch to wireless networking before starting the mail application, digital signatures and encryption seem to work!  This is pretty weird behavior.  Make sure to restart mail if you were previously wired.
  Here are some theories:
  Something to do with OCSP?  When I am wired vs wireless I am on different ip subnets and subject to different firewall rule sets.  Perhaps OCSP is trying to determine the status of the certificate and failing? 
  Here are some things I have tested:
  I switched to a different official apple brand thunderbolt to ethernet adapter with no change in behavior
  I disabled wireless and disconnected my wired network.  So no network access at all.  Signatures and encryption work!  The message obviously does not send, but it appears in my outbox and I don't get the signature error.  When I reconnect my wired cable, the message sends successfully and appears as encrypted in my sent folder!
  I have attempted to disable OCSP by using "Keychain Access --> Preferences --> Certificates Tab --> OCSP (OFF) and CRL (OFF)" but this hasn't made a difference in the behavior of wired networking.
  Ran a TCPDUMP on traffic to the OCSP service but didn't see any traffic when I attempted to send a message and received the signature error
  I am pretty stumped on this.  This is very odd behavior
  Does anyone else experience this behavior?

• Unable to digitally sign or encrypt messages in Mail

  I recently switched from a PC to a Mac and I have been unable to digitally sign or encrypt any of my e-mails. I'm currently running version 3.3 (926.1/926) for Mail and I made sure that my .cer security certificate is located in Keychain Access as well as certificates for my contacts. My certificate is valid because it has the green checkmark next to it.
  I know what the *digitally sign* and encryption buttons should look like and where they should be located when composing e-mails, but they are just not there for me. Does anyone have any advice on how to fix this. Does it matter which folder the .cer security certificates should be located in for Keychain Access? Or is there a specific option I need to enable within Mail to be able to see those buttons?
  I know that Mail is recognizing security certificates for e-mails that are being sent to me because it is showing the starburst/checkmark icon next to those e-mail addresses, and my Address Book is showing that same icon next to those e-mail addresses for my contacts.

  I finally have a solution to this problem. I had been trying to use a .cer security certificate issued by Comodo, it had worked just fine on Windows but my Mac didn't seem to like it. I also tried creating my own certificate through OSX, but even after I created it I still couldn't see the buttons.
  I had someone direct me to this webpage which ultimately helped me fix the problem:
  http://allforces.com/2007/03/02/email-security/
  I ended up using Thawte to issue me another security certificate (this time it was an x.509 file), the security certificate automatically opened in Keychain Access and downloaded to the Certificates and My Certificates folder. Once I shutdown Mail and restarted it I had the buttons for both encryption and digitally signed. Of course the encryption button is still greyed out because it is a new certificate and I need to make sure my Address Book contacts have a copy of it before I can encrypt.
  Message was edited by: Matthew Little

• Digitally Signed and/or Encrypted Emails -- Can't Scan or Search

  I work in an environment where we enforce digital signatures and encryption on emails when certain conditions exist in the body of the email (e.g. hyperlinks, attachments, etc.).  What we've found, over the years, is that Exchange 2010 doesn't appear
  to be able to read the body or attachments on emails that are signed or encrypted.  We've found this because Transport rules consitently fail against these emails and Search-Mailbox fails to return results against test emails that have been digtially
  signed/encrypted using Body or Attachment keywords as criteria.
  Has anyone else run into this, can explain this, or know if there is a workaround/hotfix?  I heard from someone that Exchange 2013 fixes this issue but need a resolution for 2010.  Any assistance would be greatly appreciated.

  No you're right.  The customer keeps coupling the two because of their adjacency in Outlook and I repeated it because I've been hearing it all day.  The limitation of encryption is well understood but digitally signed emails are only plain-text
  with added s/mime data.  However, this latter case still seems to baffle Exchange 2010 -- Transport rules don't act upon rules based on body-content and attachments and Search-Mailbox will not report users' mailboxes as having mail that's searched for
  if it's digitally signed.

• Can't use Find My Friends on iPhone due to Apple ID not being verified. Can't do this as I can't access my .mac email any longer and I can not change the primary e-mail address for my Apple ID!

  Can't use Find My Friends on iPhone due to Apple ID not being verified.
  Can't do this as I can't access my .mac email any longer and I can not change the primary e-mail address for my Apple ID!
  So my options are:
  Create a new Apple ID, use that and lose all the apps I've purhcased with it (a fairly substantial amount)
  Somehow Migrate these purchases over to a new Apple ID
  Apple let me change the primary ID for the account
  Anyone else ran into this before?
  I've tried accessing the mail through a mail application using the correct server information, and trying both the old 6 character password and the one I had to change it too after they updated the security guidelines - neither work.
  Help would be greatly appreciated as I can see more services down the line not working without the address being verified!

  To change the iCloud ID you have to go to Settings>iCloud, tap Delete Account, provide the password for the old ID when prompted to turn off Find My iDevice, then sign back in with the ID you wish to use.  When you do this you may find that the password for your old ID isn't accepted.  If this should happen, and if your old ID is an earlier version of your current ID, you need to temporarily recreate your old ID by going to https://appleid.apple.com, click Manage my Apple ID and sign in with your current iCloud ID.  Click edit next to the primary email account, change it back to your old email address and save the change.  Then edit the name of the account to change it back to your old email address.  You should not need to verify the old email address.  You can now use your current password to turn off Find My iDevice on your device, even though it prompts you for the password for your old account ID. Then save any photo stream photos that you wish to keep to your camera roll.  When finished go to Settings>iCloud, tap Delete Account and choose Delete from My iDevice when prompted (your iCloud data will still be in iCloud).  Next, go back to https://appleid.apple.com and change your primary email address and iCloud ID name back to the way it was.  Now you can go to Settings>iCloud and sign in with your current iCloud ID and password.

• Digital singning and encryption

  I developed Web Sevices with Soap messages Encripted and Signed with Apache XML Security (AXIS compatible) but now I'm working with Oracle 10g. I like to use the 10g's new features (JAX-RPC, Soap, UDDI, etc) but I like to still sending Encripted and Signed messages. Anyone know if Xml Security is compatible with 10g or if there are another Library like Apache's one?
  Thank You
  Wilberto Montoya

  Hi Amber,
  The work is based on the finalization and imminent publication of the
  wsse Oasis spec. This is targeted for WLS 8.1 SP3, and you can contact
  our outstanding support organization, reference CR134931, for details.
  Regards,
  Bruce
  Amber Osterman wrote:
  >
  I recently attended the webinar on Web Services interoperability w/ .NET. The
  presenter mentioned that digital signatures and encryption did not work w/ Workshop
  8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
  NET and Workshop using digital signatures and encryption.

• Digital Signatures and Encryption

  I recently attended the webinar on Web Services interoperability w/ .NET. The
  presenter mentioned that digital signatures and encryption did not work w/ Workshop
  8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
  .NET and Workshop using digital signatures and encryption.

  Hi Amber,
  The work is based on the finalization and imminent publication of the
  wsse Oasis spec. This is targeted for WLS 8.1 SP3, and you can contact
  our outstanding support organization, reference CR134931, for details.
  Regards,
  Bruce
  Amber Osterman wrote:
  >
  I recently attended the webinar on Web Services interoperability w/ .NET. The
  presenter mentioned that digital signatures and encryption did not work w/ Workshop
  8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
  NET and Workshop using digital signatures and encryption.

• Simple question involving data signing and encryption

  What is exactly mean by signing and encrypting data?
  And how would it apply to the case of a web browser..where I have to sign and encrypt data to and from a web browser? In this case it is an output and input stream.
  Does every byte have to be signed or just the starting bytes? Singing every byte would make the process slow and inefficient

  I know if you you sign and encrypt the data to the
  web browser, it will obviously not be recognized but
  this is my scenario:Your ASCII art didn't come across at all, I'm afraid - I'm not sure what you were going for, but I can't seem to recreate it. I think I can follow the explanation, though.
  P is the program i am developing. It is supposed to
  encrypt and sign data to and from the web browser.
  P1 get the web browser request, encrypts the data
  a and is supposed to sign the data...send it
  to P2 which decrypts and verifies the signing which
  then forwards it to the proxy or the server as seen.
  Vice versa from the server response.So you're working on a web-proxy that encrypts it's transmissions, and you want to add signature verification as well.
  My question still remains...how do you sign a stream?I answered your question, actually. You don't sign "streams" - you sign "messages". In your case, you sign the entire transmission, and then you transmit it.
  Right now I am using RSA keys to send a symmetric key
  across safely for the decryption etc I have the
  encryption/decryption process covered and the browser
  works..but i didn't do signing of any sort...how to
  implement this..for every byte? Is signing necessary?Given your requirements, I have to ask - why are you re-creating SSL? If you have P1 and P2 talk SSL to each other, you get everything you've described here, including signing. I don't understand why you feel the need to recreate an existing protocol.
  Grant

• Signed and encrypted message

  I am working on a applicaion that can load a message from a third party software.
  The message is signed and encrypted and will be sent via https.
  My application is running on the Tomcat 5.0.24
  And I have certificate from the third party software
  However, I don't know **how** to use the certificate to decrypted the message.
  For example, do I need to write Java code to decrypted the message or does Tomcat take care of the decryption?
  If I need to write the code to decrypted the message, what API I should use?
  If Tomcat cares of the decryption, how does it work? Do I need to modify the configuration file and how?
  Thanks.

  Jenny_Run wrote:
  However, I don't know **how** to use the certificate to decrypted the message.You don't use a certificate to decrypt since certificates are public so anyone could decrypt.
  As for the rest, the devil is in the detail and you don't give any.

• Signing and encrypting the message

  Hi all,
  How we can do signing and encryption of message with multiple certificates at XI adapter.As it's a XI adapter,we can't use adapter modules for this purpose..
  What's the other way around?Any Clues..??
  Thanks,
  Anoop

  I want signed and encrypted file on my target side from my second XI server.But i have to use FTPS receiver adapter at my second XI server.Now while encrypting my msz,i m have to use multiple certificates.The problem and limitation is, that the FTPS adapter is only taking/accepting the first SOAP attachment and is ignoring any further. This means, that the attached signature would be ignored by FTPS adapter.So, m validating the same at my First XI server so that it goes a single message to my second XI server.Hope it's clear now..
  Thanks,
  Anoop