Email cannot be read when it is only digitally signed

I, and my boss (using a Curve) have been having continuous trouble with reading emails that have been digitally signed.  Now, before people start running down the basics, here's what I have done so far:
1.  Installed latest ROM for both devices, still waiting on 4.5 for my 8830...
2.  Installed S/MIME application on both devices
3.  Installed latest Desktop OS on both machines and synchronized certificates from desktop to device and back
Here is the systems we are using:
1.  Exchange 2003
2.  BlackBerry Enterprise Server (version unknown, not my department)
3.  Verisign certificates, managed on-site
Here are some of the caveats we are experiencing.
1.  We can read signed and/or encrypted messages from Outlook (03/07), Entourage (04/08), and Thunderbird problem-free
2.  We can read signed AND encrypted, or encrypted ONLY, messages from Mulberry, but we cannot read signed ONLY messages from Mulberry
There is no error message, in fact everything "looks" normal, we are just unable to view the body of the emails.  What we do see is similar to this:
Received Using: <mailbox> (S/MIME)
Message Status: Opened
To: <me>
Sent: <date>
From: <Mulberry User>
Subject: <subject>
<img><img> Trusted
[1 Attachment]
application: Unknown (2K)
The <Mulberry User> did some research and sent me the following information:
This is a signed message sent from Outlook:
MIME-Version: 1.0
Content-Type: multipart/signed;
        boundary="----=_NextPart_000_00CE_01C99022.D841F9A0";
        protocol="application/x-pkcs7-signature";
        micalg=SHA1
This is a signed message sent from Mulberry:
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=sha1;
 protocol="application/pkcs7-signature";
 boundary="==========45CF5864B8BBBF80D9D4=========="
See any difference between those two?
According to the RFC, the "application/x-pkcs7-signature" MIME type is supposed to be handled, by clients, the same as the "application/pkcs7-signature" MIME type, which is the "correct" MIME type.  So Mulberry handles it correctly.  Outlook does not.  And neither does the Blackberry.  Because *all* clients *should* honor both types.
http://www.ietf.org/proceedings/05nov/RFCs/rfc2311.txt
"C.1 Early MIME Types
Some early implementations of S/MIME agents used the following MIME types:
   application/x-pkcs7-mime
   application/x-pkcs7-signature
   application/x-pkcs10
In each case, the "x-" subtypes correspond to the subtypes described in this document without the "x-"."
"This memo also discusses how to use the multipart/signed MIME type defined in [MIME-SECURE] to transport S/MIME signed messages. This memo also defines the application/pkcs7-signature MIME type, which is also used to transport S/MIME signed messages. This specification is compatible with PKCS #7 in that it uses the data types defined by PKCS #7."
3.4.1 Choosing a Format for Signed-only Messages
There are no hard-and-fast rules when a particular signed-only format should be chosen because it depends on the capabilities of all the receivers and the relative importance of receivers with S/MIME facilities being able to verify the signature versus the importance of receivers without S/MIME software being able to view the message.
Messages signed using the multipart/signed format can always be viewed by the receiver whether they have S/MIME software or not. They can also be viewed whether they are using a MIME-native user agent or they have messages translated by a gateway. In this context, "be viewed" means the ability to process the message essentially as if it were not a signed message, including any other MIME structure the message might have."
This means that the Blackberry is required, by RFC, to be able to read a signed message even without the aid of S/MIME capable software.  The fact that it does not is a failure of the Blackberry.
The above email was in reference to the fact that all of these emails that cannot be read on the devices, can be read in Outlook, and when a signed message is sent from Outlook, it can be read on the devices.  Furthermore, this is not to say that the information above is 100% valid and correct, but I am hoping that it sparks some discussion and hopefully a resolution can be found.
Thanks for your time in reading this.
Andrew
BB8830

Well not 100% sure but in my experience the following setting is the problem "Enable S/MIME Encryption on Signed or Weakly encrypted messages". This setting is a per server setting and is found in the general options of the server.
When this is set to true the BES encryptes the message again over the signed message...but then for some reason unknown it doesn't decrypt it back when the client reads it.
Maybe you could ask your admins and try it out and see if it works...

Similar Messages

  • 2 mail accounts, emails marked a read when not

    Hi, I have latest mac os and using mac mail. I have 2 accounts and I have similar mail sent to both accounts. When I read an email in one account it registers as read in the other as well. I don't want this to happen. How do I set mail, I can't find any setting to turn on or off.
    Thank you in advance.

    Hi davek1962,
    Welcome to the BlackBerry Support Community.
    The following KB article should provide more information on this issue as well as some possible resolutions.
    "Email messages on a Microsoft Exchange Server are marked as read when accessed by the BlackBerry Internet Service via POP" http://bbry.lv/YxckpM
    Hope this helps.
    -FS
    Come follow your BlackBerry Technical Team on Twitter! @BlackBerryHelp
    Be sure to click Kudos! for those who have helped you.
    Click Solution? for posts that have solved your issue(s)!

  • Emails marked as read when sent to Blackberry Torch 9850

    I'm having an issue with emails being marked as read in my work Outlook Inbox as soon as they are sent to my Torch 9850, even though I have not opened the email on my phone or on my PC. 
    We use Exchange Server 2010.
    Has anyone else had this problem and if so, is there a setting change or workaround to this issue?  I've turned off reconcilliation for now.
    Thanks!

    Hi davek1962,
    Welcome to the BlackBerry Support Community.
    The following KB article should provide more information on this issue as well as some possible resolutions.
    "Email messages on a Microsoft Exchange Server are marked as read when accessed by the BlackBerry Internet Service via POP" http://bbry.lv/YxckpM
    Hope this helps.
    -FS
    Come follow your BlackBerry Technical Team on Twitter! @BlackBerryHelp
    Be sure to click Kudos! for those who have helped you.
    Click Solution? for posts that have solved your issue(s)!

  • I don't want to mark emails as read when I have only seen them in preview. How can I do this, so they are only marked as read when actually opened?

    every other email client I have used lets me mark a message as read only when I actually double click and read it. and not just when I preview it.

    I will, thanks. It looks like I am keener to use your product than you are for me to use it.

  • TS3899 Wheel of death, I can see only 6 of my 400 inbox emails and even those when selected will only show to and from and then the spinning wheel of death ..."loading"

    One email account on ipad2 works other account won't show content then will only load 6 emails out of 400. I deleted email account, did all updates, reboot, still saying "loading" constantly . First shows 6 then jumps up to 52 then back down to 4 in the inbox, what a mess, payroll day for staff I need email. Applemess! I paid for extra warranty but no help from them

    Well, eating crow is not one of my favorite meals...even though I did not change my email settings;end result is it had something to do with"pop" server item. I phd apple,the 2nd call resulted in this suggestion and i looked on you tube and got a tutorial. So, don't pay to get apple help, it is not hardware issue or their software.  As rbrylawski said..at the start(heavy sigh) it is prob a server problem. Words of wisdom, when u get really frustrated like I was day after day no email, wait until you get the solution before putting blame onto product,company.  This is what I should have done
    "Thanks for trying to help me rbrylawski, can u tell me more about fixing server?" you had it right, many thanks for your expertise and.....patience.  Now I hope to change my name on this site.

  • Combo boxes appear in reverse and info cannot be read when selected

    Half of my combo boxes appear normal and half appear with the drop down arrow on the right side of the box. the choices, when selected, appear above the arrow and are barely legible. some of the boxes appear perfectly normal and some are like this with no apparent reason as to why. I have not changed combo box settings through the duration of my project to make this happen, so it appears random. . . I have already done hundreds of pages and need to go back and check all of these again but need to do it right this time!
    any help would be great,
    thanks all

    My mistake, the combo boxes in question are appearing inverted where the arrow appears on the left side facing upwards. and the answers, when chosen, appear above that arrow and are cut off by the top edge of the combo box.
    i also just found out that it does not happen in some pdf viewers. when viewed in adobe reader or google chrome it's fine, but when viewed in Mac Preview the inverted arrow happens.
    could there be a bug in preview?
    thanks for the responses guys!

  • User unable to read attachment​s from digitally signed emails

    I have an Army user with a Blackberry 8830 World Edition, paired with a Bluetooth Smart Card reader.  Whenever he tries to open up digitally signed emails, it always requires him to use his CAC card to decrypt the message, whereas with other users, they don't require the same.
    As well, when the user has digitally signed emails with attachments, the attachments show up as a garbled mess.  He las the latest Bluetooth Smart Card reader drivers, as well as the SMIME package, installed on his Blackberry.  Does anybody know of any ideas we could try?

    Good evening....
    I am not sure if you have received any more information on the issue.  I just came across the same issue.  I am not completely familiar with this setup but I am going to look into the different settings on the BB device for SMIME and see if I can fix it.
    I would be grateful if you have gotten a fix for this and could provide some guidance.  I will post resolution if found.
    Good luck.

  • Bug with digitally signed/encrypted emails

    Summary:
    In Lion, inbound emails that are digitally signed and/or encrypted do not contain any indicators that show that the email is encrypted and that the sender has digitally signed it.
    Even worse, if the contents of a digitally signed email have been altered, Mail does not display any warnings that the message has been tampered with.
    Steps to Reproduce:
    Send an encrypted and digitally signed email. It will be received without any indicators saying it was signed/encrypted. In addition, alter the digitally signed email source with a text editor, and then send the email (using telnet commands) to the mail server. When received, Mail does not warn the user that the email was modified.
    Both of these issues were not present in Mail under Snow Leopard
    Expected Results:
    Digitally signed/encrypted emails should have visual indicators to show it (see screenshot below showing same email in Lion and a different client). In addition, digitally signed emails that were altered must cause mail to warn the user about the tampering.
    Actual Results:
    Mail does not show that an email is signed/encrypted. Mail does not show that a digitally signed email has been tampered with.
    Neither of these two issues were present in the Mail.app in Snow Leopard.
    Anyone found a solution....?

    Running OS X 10.7.3 Apple Mail version 5.2(1257)
    My signature and encryption work fine for both incoming and outgoing e-mail. However there is an odd thing I see with e-mail received from Outlook senders.
    The e-mail from Outlook 2007 and 2010 show in my Apple Mail as Encrypted,Encrypted. Not as Signed,Encrypted as one would expect. Also in some cases I do not see anything in the header to indicate that the e-mail is Signed or Encrypted, unless I open the e-mail a second time.
    On the second attempt to view the e-mail I then can see in the header Encrypted,Encrypted when from Outlook. I only see this behavior when the Sender is using MS Outlook or Mozilla Thunderbird.
    I hope this bug is addressed as soon as possible.

  • Making a subform appear when Digitally Signed

    Hi,
    how would i get a hidden subform to appear when the pdf is digitally signed, what i need to appear is:
    form1.page1.subform6.SubmitForm.presence = "visable";
    form1.page1.subform6.presence = "visable";

    You would have to run your code on the preSign event otherwise if the form changes after the signature is applied it will break the signature. Your code is OK except that it is visible not visable.
    Paul

  • Since ios5, i cannot send email from my iPod when in my network, only when 3G

    Since ios5, i cannot send email from my ipad when wi-fi but only when 3G

    The SMTP server you are using with Wi-Fi would be the outgoing server of your internet service provider... this is likely why that's working.
    SMTP servers specific to a ISP would not work on the 3G network. You would probably need another SMTP server. One from your cell provider?

  • Running a mid 2009 iMac on 10.7.5, 3 gb memory, 320 gb hd.    Suddenly the computer stoped reading DVDs and the only time I can read a CD is if I restart.  Quite often when I insert a CD it gets stuck and I cannot get it out until I restart and it shows u

    Running a mid 2009 iMac on 10.7.5, 3 gb memory, 320 gb hd. 
    Suddenly the computer stoped reading DVDs and the only time I can read a CD is if I restart.  Quite often when I insert a CD it gets stuck and I cannot get it out until I restart and it shows up on the desktop where I can then eject it.
    I have checked and double checked the finder prefs and all looks normal showing a check mark on CDs,DVDs etc. (the ones I want to show up on the desktop)
    I have reset the PEAM, repaired permissions with both the disk utility on the computer and the disk utility when I start up in the Recovery Disk.  I did notice that sometimes the permission repeat the same correction several times before it moves on, and sometimes it doesn’t. I have Windows installed on a partition but I keep it unmounted until it is needed for my wife’s work.  The dock seems to be just fine and all the apps seems to run just fine.  When I insert a photo CD iPhoto does not open but when I insert a music CD iTunes does open. 
    Also, most every time I open iPhoto it takes a long time(sometimes as long as 2 minutes) for it to load.
    Sometimes my Mail (Mail 5.3) does not post new mail but most of the time it does. 
    Once and a while it seems like the computer slows way down but then it seems ok ten minutes later.
    All  of these ‘things’ seemed to have happen suddenly and I have not downloaded anything from the internet in some time.
    Of course the warranty and extended warranty are both no longer in effect having had this computer for more than three years.
    I am running Java and Adobe Player because some of the sites I go to a lot require both.

    I believe that insufficient RAM may be the source of some of your problems. If you have a RAM of somewhere 4 to 8GB, you will experience smoother computing. 3GB doesn't seem right, so you might want to learn more by going to this site:
    http://www.crucial.com/store/drammemory.aspx
    I don't know what know what's happening with your optical drive, but it seems you use your drive quite a bit. In that case, look into a lens cleaner for your machine. It's inexpensive, works quite well.
    I hope you'll post here with your results!

  • "The file 'iTunes Library.itl' cannot be read because it was created by a newer version of iTunes." Updates were only offered by Apple when I'd open iTunes. Now I can't open iTunes. How can I access the newest iTunes as an update, not a new program?

    "The file 'iTunes Library.itl' cannot be read because it was created by a newer version of iTunes." Updates were only offered by Apple when I'd open iTunes. Now I can't open iTunes. How can I access the newest iTunes as an update, not a new program?

    this just started w/ me yesterday.  I was running 10.5.3, and nothing changed - the message just appeard out of nowhere.  I update to the latest iTunes 10.6 but the message is the same.
    Sounds like probably some sort of Library file corruption.
    The two options available in the message box are "Download" and "Quit".  Download is useless because I'm already running the latest.  Quit is pretty useless.
    I was going to just create a new Library and re-import all my music.  Of course, all my iPhone sync settings are going go have to be recreated.

  • HT1692 Have recently installed itunes and outlook on a new computer.  Have multiple email accounts set up in Outlook tho only use contacts and calendar in relation to one of these. Cannot sync itunes with the correct contacts and calendars, Help!

    My new computer is 64-bit running Windows 7 pro, SP1 and Microsoft Office 2010 Pro Plus 32-bit
    My phone is a 4S runing iOS 6.1.3
    Very frustrated now that I have recently installed itunes and outlook on this new computer.  Everything worked perfectly ok on my laptop which was also 64-bit Windows 7 and running 32-bit Microsoft Office 2010 Pro.  I have multiple email accounts set up in Outlook tho only use contacts and calendar in relation to one of these. Cannot sync itunes with the correct contacts and calendars, when I sync the calendar and contacts are empty.  Not sure if there is any way to point itunes to particular address books and calendars.
    I have installed and uninstalled itunes 3 times and thank goodness have a backup
    Can anyone help please?
    thanks in anticipation

    I had my home computer set up to sync to work's Exchange server. It worked well, but I didn't like seeing work email messages and other programs trying to sync with my default Outlook folder, which was then the Exchange (& work related) .ost file. I know there are various ways to manage those problems using filters, view, subfolders, etc., but it was a hassle for me. I think it could work well for many other folks.
    For now, I have published my work calendar and subscribed to that calendar on my home computer. So I have view only access to my calendar on my home computer (and I can add/edit calendar items on my iPad (or Outlook Web Access) when away from work). This is not quite what I wanted, but it may work.
    It almost makes me long for the days when I used my Windows Mobile Treo to sync back and forth between exchange at work and outlook at home (but had many sync conflicts as a result).

  • When using Camera raw with PS12 after editing, I cannot save my file in JPEG, only DNG

    When using Camera RAW after editing photo I can only save file as DNG, I want to save as JPEG. HOW??
    THANKS LLOYD

    BARBARA,Yes, you are so right, I was deceived by the eve button,  Just tried it and it WORKS GREAT-Thanks for the help.
    THANKS AGAIN AND HAVE A GOOD DAY Lloyd
          From: Barbara B. <[email protected]>
    To: Lloyd Bennett <[email protected]>
    Sent: Tuesday, January 13, 2015 11:46 AM
    Subject:  When using Camera raw with PS12 after editing, I cannot save my file in JPEG, only DNG
    When using Camera raw with PS12 after editing, I cannot save my file in JPEG, only DNG
    created by Barbara B. in Photoshop Elements - View the full discussionYou are being deceived by the Save button, like most people. That button is not the Save As button, really, but a link to the DNG converter. To save your raw file in an image format, click the Open button instead and then save in the format of your choice in the editor. If the reply above answers your question, please take a moment to mark this answer as correct by visiting: https://forums.adobe.com/message/7092207#7092207 and clicking ‘Correct’ below the answer Replies to this message go to everyone subscribed to this thread, not directly to the person who posted the message. To post a reply, either reply to this email or visit the message page: Please note that the Adobe Forums do not accept email attachments. If you want to embed an image in your message please visit the thread in the forum and click the camera icon: https://forums.adobe.com/message/7092207#7092207 To unsubscribe from this thread, please visit the message page at , click "Following" at the top right, & "Stop Following"  Start a new discussion in Photoshop Elements by email or at Adobe Community For more information about maintaining your forum email notifications please go to https://forums.adobe.com/thread/1516624.

  • Cannot send email from pop account when in 3G, will send in WIFI

    I cannot send email from pop account when in 3G, will send in WIFI.
    I thought it was the SMTP server first.. but when i config my WIFI, suddenly the emails that i tried to send, left my outbox and sent.
    Any idea's

    The SMTP server you are using with Wi-Fi would be the outgoing server of your internet service provider... this is likely why that's working.
    SMTP servers specific to a ISP would not work on the 3G network. You would probably need another SMTP server. One from your cell provider?

Maybe you are looking for

  • Calendar On Ipad not Syncing to Iphone Icloud

    Hi I recently had an i pad mini for christmas. When i tried to sync my calendar from my iphone, only certain events from the past few weeks would sync not all of the year. I have gone into settings and made sure that i have the option for everything

  • Page Size for Z2100 - Mac Software

    I print lots of long documents, all of which are 23" wide but of vaiable lengths. I used to use HP Instant Printing software on my PC, where I would simply add the file and my HP Designjet Z2100 would print it and then cut the roll before moving onto

  • Dialog instance error

    Dear all, System details: iseries, v5r3m5, sap r3ex4700 sr1, kernel(u) 640. Requirement: I installed dialog instance on windows 2003 server. Work process does not start. Log is attaced here. I have updted the patch also. Can anyone advise me. Thanks

  • My iPhone cannot connect to iTunes

    How can iPhone 4 play/connect with iTunes store?

  • Content Folio problem

    Hi All, I'm new in Content Server. I'd add folio component to content server and run successful. The problem is : First, I had created a folio and it's attribute. I set a slot with attribute allow empty=false. After checking a document into the slot,