Reply to post:

Dumb bug of the week: Outlook staples your encrypted emails to, er, plaintext copies when sending messages

LDS Silver badge

S/MIME was designed both for message signature and encryption. It is known that some transport data need to be in cleartext because of course only the recipient has the key to decrypt a message - still the message "payload" is encrypted, and it is in the server storage as well.

Then the transport may happen over an encrypted channel to ensure confidentiality of the whole message - but unluckily now you can only protect that data from/to your mail client and your mail server - whatever happens outside your mail server is not under your control - the SMTP protocol really needs an update - there's a good chance no transport encryption will be used, and even it it is, there is no provision to check the certificates of the server you're talking to.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019