- BlackBerry Storm vs. the iPhone
- Digg's Kevin Rose: "We have to do better"
- Blogger warns: "Nortel doesn't make it out alive"
- Financial quagmire bringing out the scammers
- Verizon plays with the wrong e-mail addresses
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
This article was contributed by a reader. If you have an idea for an article contact Editor in Chief John Dix, jdix@nww.com.
The popularity of wireless LANs is increasing as is the use of wireless Internet access points, so the need for secure and encrypted e-mail exchanges is becoming more critical. While there are many implementations of e-mail encryption, one of the most popular e-mail servers is Microsoft Exchange 2003 Server which has built-in encryption capabilities.
Microsoft Exchange 2003 Server allows for the exchange of encrypted e-mail with other e-mail servers using Transport Layer Security (TLS) protocol. Without the encryption, user names and passwords can be easily intercepted on a LAN by an employee running a packet sniffing utility or by a hacker sniffing packets coming out of the LAN.
Later in this article, I will demonstrate an example of an intercepted message by the Microsoft Network Monitor without TLS encryption and you will see the full text of the unencrypted message. I will also show an example of how an encrypted message appears in the same packet sniffing utility.
The Exchange server requires an X.509 server certificate for TLS encryption. An X.509 server certificate is a digital form of identification that is typically issued by a certification authority and contains identification information, a validity period, a public key, a serial number and the digital signature of the issuer.
But first some basics.
2. What is Transport Layer Security protocol?
4. How to configure TLS encryption on Microsoft Exchange 2003 server
5. Testing and Debugging TLS protocol on Microsoft Exchange 2003 server
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (2)
IMAP4+TLSBy Anonymous on July 23, 2008, 12:28 pmdoes exchnage 2003 support IMAP+TLS? i tried to access my inbox through IMAP with only TLS enabled (thunderbird client) and i get a "Protocol Error: "Unidentifiable...
Reply | Read entire comment
Configuring and Troubleshooting Transport Layer Security protocol in Exchange ServerBy james melancolico on September 12, 2007, 7:17 amhow to configure server 2003?
Reply | Read entire comment
View all comments