E-mail security
Digitally signing and encrypting your messages
Windows Mobile® in your phone protects your Outlook e-mails
through Secure/Multipurpose Internet Mail Extension (S/MIME),
which allows you to digitally sign and encrypt your messages.
Digitally signing a message applies your certificate with the
authorization key to the message. This proves to the recipient
that the message is from you and not from an imposter or a
hacker, and that the message has not been altered.
Encryption protects the privacy of your message by converting
it from plain, readable text into cipher (scrambled) text. Only the
recipient who has the authorization key can decipher the
message.
S/MIME encryption and digital signatures for Windows Mobile®
powered devices are available only with Exchange Server 2003
SP2 or a later version that supports S/MIME. If you are not using
one of these products, or have not yet synchronized, these
options are unavailable.
You can encrypt a message with or without a certificate. However,
to read an encrypted message, you need a valid certificate to
decrypt it.
To individually sign and encrypt a new message
1
Tap
>
Messaging
>
Outlook E-mail
.
2
Tap
Menu
>
New
to create a new message.
3
Tap
Menu
>
Message Options
.
4
From the
Security
list, select whether to encrypt only, sign the
message only, or do both.
5
Tap
ok
.
To verify the digital signature on a signed message you
receive
1
Tap
>
Messaging
>
Outlook E-mail
.
2
Open an Outlook e-mail message that has been digitally
signed.
3
At the top of the message, tap
View Signature Status
.
4
Tap
Menu
>
Check Certificate
.
5
To view the details of the certificate in the message, tap
Menu
>
View Certificate
.
There can be several reasons why a digital signature is not valid.
For example, the sender’s certificate may have expired, it may
have been revoked by the certificate authority, or the server that
verifies the certificate is unavailable. Contact the sender to report
the problem.
To digitally sign and encrypt all messages
1
Tap
>
Programs
>
ActiveSync
.
2
Tap
Menu
>
Options
.
3
Select the
information type, and tap
Settings
. On the E-
mail Sync Options screen, tap
Advanced
.
4
Select one or both of the following options:
•
Sign all outgoing e-mail messages
– sign all your outgoing
e-mail messages so that recipients can be certain that the
messages were sent by you and have not been altered in
any way.
•
Encrypt all outgoing e-mail messages
– encrypt all your
outgoing e-mail messages so that the contents of your
messages are protected from being viewed by anyone
other than the intended recipients.
5
Tap
Choose Certificate
to select a certificate for signing or
encrypting outgoing e-mail messages.
You must obtain a valid certificate to sign and encrypt e-mail
messages successfully.
Setting permissions for an e-mail message
Another way of protecting your e-mail messages is to send
messages with restricted permissions using Information Rights
Management (IRM).
This works only with a Microsoft Outlook e-mail account and if
your company is using RMS Server SP1.
To set permissions for an e-mail message
1
Tap
>
Messaging
>
Outlook E-mail
.
2
Tap
Menu
>
New
to create a new message.
3
Tap
Menu
>
Message Options
.
4
In the
Permissions
list, select one of the following:
•
Unrestricted access
– allow anyone to read the message.
•
Do not forward
– prevent the message from being
forwarded, printed, or copied.
5
Tap
ok
.
An IRM-protected message received on your phone can only be
replied to or forwarded if the message permits it.
Company e-mails and appointments
27
This is an Internet version of this publication. © Print only for private use.