----- Original Message ----- From: <mailto:anders.rundgren@xxxxxxxxx>Anders Rundgren To: <mailto:ietf-smime@xxxxxxx>ietf-smime@xxxxxxx Sent: Saturday, December 23, 2006 10:36 Subject: Goal for S/MIME 2007? - Client certificates are [still] uncommon
You think so? In some countries in Europe, everyone has one through a chip in their identity card. In some countries, every medical professional has several of them. Some Fortune-100 companies provide them to every employee.
- Encryption at the desktop by consumers does not work
What makes you think so?
- Security administrators want central policy handling
They already have that because most commercial products in this area provide them with central policy management.
- Trusted third-parties is the norm (from your employer to Google) - You cannot send an encrypted e-mail to the IRS and you probably never will
You want to bet? If IRS's in other countries can do it, why wouldn't the IRS in the US do it in the near or not so near future?
- e-mail encryption is incompatible with many organizations' internal policies
What are you referring to? We see the opposite being true in every company we talk to.
- Security should be transparent, default, and non-intrusive
You're right.Because of SOX, most companies want to secure their email. They want filtering, encryption, signing. The issue is, will they use S/MIME or will they use some non-standard algorithm. In Europe, it's mostly S/MIME. So I don't see your point. S/MIME will be the dominant algorithm for encrypting and signing of email, both in the US and elsewhere. Do you sign your email with your trusted certificate, assuming you have several?
Christine -- Izecom BV Secure e-mail and digital signatures www.izecom.com
Attachment:
smime.p7s
Description: S/MIME cryptographic signature