This Workshop recapitulates the basics of encryption, digital signature and X.509 certificates in order to gain a basis for the understanding of PKI, S/MIME, PGP and related standards. Recommended encryption standards, protocols and key lengths will be discussed, with respect to current threats of international intelligence services surveillance programs. Organizational and user specific conditions as well as certificate handling in different operating systems, browsers and applications are demonstrated in order to understand the technical pitfalls that should be addressed, before implementing a corporate solution for e-mail security. Different approaches for securing e-mail communication like Gateway-to-Gateway encryption, TLS, S/MIME, PGP, DRM et al. are discussed and evaluated with respect to:
Finally, the potential impact of international intelligence services surveillance programs on these solutions/approaches is critically examined.
Friedwart Kuhn is a renowned expert for Active Directory security and has performed a huge number of projects both in the concept and design space and in the pentesting and incident analysis field.