Privacy-Enhanced Electronic Mail
- M. Bishop, “Privacy-Enhanced Electronic Mail”, Technical Report PCS-TR91-150, Revision 3, Dept. of Computer Science, Dartmouth College, Hanover, NH 03755 (1991).
The security of electronic mail sent through the Internet may be described in exactly three words: there is none. The Privacy and Security Research Group has recommended implementing mechanisms designed to provide security enhancements. The first set of mechanisms provides a protocol to provide privacy, integrity, and authentication for electronic mail; the second provides a certificate-based key management infrastructure to support key distribution throughout the internet, to support the first set of mechanisms. This paper describes these mechanisms, as well as the reasons behind their selection and how these mechanisms can be used to provide some measure of security in the exchange of electronic mail.