Cisco Cisco Email Security Appliance C160 Mode D'Emploi
19-2
Cisco AsyncOS 9.0 for Email User Guide
Chapter 19 S/MIME Security Services
Signing, Encrypting, or Signing and Encrypting Outgoing Messages using S/MIME
Note
If PXE and S/MIME encryption is enabled on the appliance, AsyncOS encrypts messages using S/MIME
first, and then using PXE.
first, and then using PXE.
Signing, Encrypting, or Signing and Encrypting Outgoing
Messages using S/MIME
Messages using S/MIME
•
•
•
•
•
•
•
•
Note
You can use AsyncOS S/MIME security services to sign, encrypt, and sign and encrypt outgoing and
incoming messages.
incoming messages.
S/MIME Signing and Encryption Workflow in AsyncOS for Email
•
•
S/MIME Signing Workflow
The following process describes how AsyncOS performs S/MIME signing.
1.
Apply a hash algorithm to the message to create the message digest.
2.
Encrypt the digest using private key of the sender's S/MIME certificate.
3.
Create a PKCS7 signature with the encrypted digest and public key of the sender's S/MIME
certificate.
certificate.
4.
Attach the signature to the message.
5.
Send the signed message to the recipient.
S/MIME Encryption Workflow
The following process describes how AsyncOS performs S/MIME encryption.
1.
Create a session key.