Setup Guide for Outlook for sending encrypted and signed email - Yash-777/Java_Mail GitHub Wiki
Setup Guide for Outlook 2010 for sending encrypted and signed email
-
Encrypt email messages with Certificates and Algorithms.
-
IdenTrust: Using a Digital Certificate in Microsoft® Outlook 2010 or Later to Digitally Sign and Encrypt Emails
Algorithms and key lengths for S / MIME
The following algorithms and keys with the specified key lengths are to be used 20:
- Signature:
▪ Hash function (hash algorithm): SHA-256 or SHA-512 (according to IETF RFC 5754).
▪ Signature algorithm: RSASSA-PSS (according to IETFRFC 4056). Key length of the RSA keys used at least 2048 bits. - Encryption:
▪ Content encryption: AES-128 CBC, AES-192 CBC or AES-256 CBC (according to IETF RFC 3565).
▪ Key encryption: RSAES-OAEP (according to IETF RFC 8017). The key encryption has hash functions as parameters. Here SHA-256 or SHA-512 are to be used. Key length of the RSA keys used at least 2048 bits.
Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files UnlimitedJCEPolicyJDK8C:\Softwares\JDK\jdk1.8.0_121\jre\lib\security
we need to extract the zipped file into a directory of our choice – which contains two jar files: local_policy.jar, US_export_policy.jar
Finally, we need to look for the {JAVA_HOME}/lib/security folder and replace the existing policy files with the ones that we’ve extracted here.
Java KeyStores (
*.jks, *.keystore, *.jceks, *.ks) PKCS #12 Keystores (*.pfx, *.p12) Bouncy Castle Keystores (*.bks, *.uber)
Baeldung.com Preparing Certificate And Private Key Baeldung.cer, Baeldung.p12 (password = “password”)
Symmetric Key encryption: The private keys and corresponding certificates are stored in files ending with ".p12". These are PKCS12 files with password
passwd.
KeyStore Explorer
github KeyStore Explorer is an open-source GUI replacement for the Java command-line utilities keytool and jarsigner.