 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
.NET Forum / .NET Framework / Security / August 2004How do I send an s/mime e-mail using x509v3?
Hi I'm about to develop an application that sends/receives e-mails encrypted and signed using x509v3 certificates. The asymmetric encryption algorithm will be RSA. I don't want to buy any third-party tools, but using unmanaged COM-objects is OK. Do you have good links on this? What classes should I use? I've read about using CryptoAPI via CAPICOM, is this the way to go? ( http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dncapi/html/enc ryptdecrypt2a.asp ) I'm quite new to this, so help on getting me going is appreciated! Thanks in advance. Mitch's stuff is always very good. Also, there is a sample here that shows some of the S/MIME part for the actual email implementation using CDO: http://support.microsoft.com/default.aspx?scid=kb;en-us;280391 This sample shows signing, but I think there is one for encrypted/enveloped messages as well. Joe K. > Hi > [quoted text clipped - 7 lines] > > I've read about using CryptoAPI via CAPICOM, is this the way to go? ( http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dncapi/html/enc ryptdecrypt2a.asp ) > I'm quite new to this, so help on getting me going is appreciated! > > Thanks in advance. also, check out the CAPICOM 2.0.0.3 VB sample which shows some of the S/MIME logic: <capicom-install-dir>\CAPICOM\samples\vb\SMIME - Mitch "Joe Kaplan (MVP - ADSI)" <joseph.e.kaplan@removethis.accenture.com> wrote in message news:%23XrTejghEHA.556@TK2MSFTNGP10.phx.gbl... > Mitch's stuff is always very good. Also, there is a sample here that shows > some of the S/MIME part for the actual email implementation using CDO: [quoted text clipped - 24 lines] > > > > Thanks in advance. Thanks for your answers. I've read more on this now, and I realize the coding will take me quite some time, so I guess buying a third party tool with a simpler API might be a better solution. Do you know a good (not very expensive) third party tool to send/receive encrypted/signed s/mime messages? I've searched google and found an s/mime tool made by Chilkat wich looks promising (It has easy-to-use methods, handles the certificates on the local computer for me etc.), but I'd like to know what tool you can recommend? > Hi > [quoted text clipped - 7 lines] > > I've read about using CryptoAPI via CAPICOM, is this the way to go? ( http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dncapi/html/enc ryptdecrypt2a.asp ) > I'm quite new to this, so help on getting me going is appreciated! > > Thanks in advance. We've used Chilkat in production on one of our boxes. I'm not really thrilled with their API as it doesn't really integrate with the Framework at all (it uses its own certificate class instead of the built-in .NET for example) and we had horrible problems with resources leaks at first, but I think they implement IDisposable now and things are better. The hardest part with sending encrypted mail in my opinion is locating the correct certificates for the recipients. In our environment, this involves a lookup to AD and some crypto API calls to determine which cert is the encryption cert and which one is the signing cert since the .NET X509Certificate class conveniently ignores the KeyUsages field and doesn't have a property for this. Hopefully you'll have a good solution for the certificates issue. Joe K. > Thanks for your answers. I've read more on this now, and I realize the > coding will take me quite some time, so I guess buying a third party tool [quoted text clipped - 17 lines] > > > > I've read about using CryptoAPI via CAPICOM, is this the way to go? ( http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dncapi/html/enc ryptdecrypt2a.asp ) > > I'm quite new to this, so help on getting me going is appreciated! > > > > Thanks in advance. Hello! You wrote on Fri, 20 Aug 2004 14:02:56 +0200: JO> Thanks for your answers. I've read more on this now, and I realize the JO> coding will take me quite some time, so I guess buying a third party JO> tool with a simpler API might be a better solution. Do you know a good JO> (not very expensive) third party tool to send/receive encrypted/signed JO> s/mime messages? You might want to check SecureBlackbox (http://www.secureblackbox.com/description-sec-mimeblackbox.html) for this. SecureBlackbox offers PKI support and MIME + S/MIME support (PGP/MIME to be avaialble later). With best regards, Eugene Mayevski Free MagazinesGet these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...
|
Reply to this Message
|
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2009 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.