Professional Documents
Culture Documents
Topic - 06 - Email Security
Topic - 06 - Email Security
specification
header fields are
intended to address some defined, which may
of the problems and be included in an
limitations of the use of includes the
RFC 5322 header;
these fields
Simple Mail Transfer provide
Protocol (SMTP) following content
information about
A number of
the body of the formats
•Is intended to resolve
these problems in a elements:are
message defined, thus
standardizing
representations
representations
manner that is that support
compatible with existing Transfer encodings multimedia
electronic mail
RFC 5322 are defined that
enable the
implementations conversion of any
•The specification is content format into
a form that is
provided in RFCs 2045 protected from
through 2049 alteration by the
mail system
The Five Header Fields
Defined in MIME
MIME-Version
• Must have the parameter value 1.0
• This field indicates that the message conforms to RFCs 2045 and 2046
Content-Type
• Describes the data contained in the body with sufficient detail that the receiving user
agent can pick an appropriate agent or mechanism to represent the data to the user
or otherwise deal with the data in an appropriate manner
Content-Transfer-Encoding
• Indicates the type of transformation that has been used to represent the body of the
message in a way that is acceptable for mail transport
Content-ID
• Used to identify MIME entities uniquely in multiple contexts
Content-Description
• A text description of the object with the body; this is useful when the object is not
readable
Table 8.2
MIME
Content
Types
Table 8.3
MIME Transfer Encodings
S/MIME Functionality
Signed data
Enveloped data
• A digital signature is formed by
• Consists of encrypted content of any
taking the message digest of the
type and encrypted content content to be signed and then
encryption keys for one or more encrypting that with the private
recipients key of the signer
• The content plus signature are
then encoded using base64
encoding
• A signed data message can only be
viewed by a recipient with S/MIME
Clear-signed data capability
Signed and enveloped data
S/MIME
• Only the digital signature is • Signed-only and encrypted-only
encoded using base64 entities may be nested, so that
• As a result recipients without encrypted data may be signed and
S/MIME capability can view the signed data or clear-signed data
message content, although they may be encrypted
cannot verify the signature
Enveloped Data
• The steps for preparing an EnvelopedData MIME are:
Prepare a
block known
Encrypt the as
message SignerInfo
digest with that contains
the signer’s the signer’s
Compute the public-key
message private key
certificate,
digest (hash an identifier
function) of of the
the content to message
Select a be signed digest
message algorithm,
digest an identifier
algorithm of the
(SHA or algorithm
MD5) used to
encrypt the