Encrypt data between Outlook and Exchange encryption levels
WUDSTA1980
Does anyone know the encryption technology and levels used when the option
"encrypt data between microsoft office outlook and microsoft exchange" is
selected in Outlook 2003/2007
Many thanks in advance!
Missy Koslosky
http://blogs.msdn.com/larryosterman/archive/2005/04/19/409723.aspx - near
the bottom of the post. Larry's generally got a trustworthy memory. :)
The post is an interesting read in any case. :)
Missy
"WUDSTA1980" <WUDST...@discussions.microsoft.com> wrote in message
news:4696FBB4-7808-4125...@microsoft.com...
Elan Shudnow
RPC uses SSPI for encryption. So if you authenticate via Kerberos, it
uses Kerberos encryption. If you use NTLM, it uses NTLM encryption.
NTLM encryption utilizes DES (56-bit). Windows 2000 Kerberos used DES
while Windows 2003 can utilize RC4 (128-bits). Server 2008 (Server 2008
Forest Functional Level) supports Advanced Encryption Standard (AES)
which can support 128/256-bits.
--
Elan Shudnow
http://www.shudnow.net
"Missy Koslosky" <mi...@DONTSPAMMEmvps.org> wrote in message
news:#caBx5oJ...@TK2MSFTNGP03.phx.gbl:
Andy David {MVP}
<SubstituteThis...@shudnow.net> wrote:
>I believe it works as such:
>RPC uses SSPI for encryption. So if you authenticate via Kerberos, it
>uses Kerberos encryption. If you use NTLM, it uses NTLM encryption.
>NTLM encryption utilizes DES (56-bit). Windows 2000 Kerberos used DES
>while Windows 2003 can utilize RC4 (128-bits). Server 2008 (Server 2008
>Forest Functional Level) supports Advanced Encryption Standard (AES)
>which can support 128/256-bits.
Thats the authentication piece, which isnt the same as the transfer
of data between client and server.
Up to Exchange/OUtlook 2003, it was RSA Security RC-2. Not sure about
Outlook/Exchange 2007. Outlook doesnt actually do the encryption of
course.
It should also be noted, that even without the encryption option
selected, mapi/rpc traffic is encoded.