Vanshika Kaushik 12104728

Cryptography Assignment
E-mail security (PGP and S/MIME)

S/MIME
S/MIME (Secure/Multipurpose Internet Mail Extensions) is a widely accepted method, or more
precisely a protocol, for sending digitally signed and encrypted messages. S/MIME allows to
encrypt emails and digitally sign them. When S/MIME is used with an email message, it helps
the people who receive that message to be certain that what they see in their inbox is the exact
message that started with the sender. It will also help people who receive messages to be certain
that the message came from the specific sender and not from someone pretending to be the
sender. To do this, S/MIME provides for cryptographic security services such as authentication,
message integrity, and non-repudiation of origin (using digital signatures). It also helps enhance
privacy and data security (using encryption) for electronic messaging.
S/MIME is based on the Cryptographic Message Syntax (CMS) specified in RFC 2630.
Enveloped data:
This consists of encrypted content of any type and encrypted content encryption keys for
one or more users. This functions provides privacy and data security.
Signed data:
A digital signature is formed by signing the message digest and then encrypting that with
the signer private key. The content and the signature are then encoded using base64 encoding.
This function provides authenticity, message integrity and non-repudiation of origin.
SignerInfo:
Allows the inclusion of unsigned and signed attributes to be included along with a
signature.
signingTime
sMIMECapabilities
sMIMEEncryptionKeyPreference

PGP:
It stands for Pretty good Privacy and was developed by Zimmerman. It is a widely
used email security algorithm to perform confidentiality are:

to perform authentication and integrity are:

to perform authentication as well as confidentiality: