Concepts and Planning << >>

Microsoft Exchange Server Advanced Security

Microsoft Exchange Server advanced security provides the following benefits:

End-to-end authentication   Ensures that a signer's identity is authentic.

Confidentiality   Encrypts a message so that only intended recipients can read the message.

Data integrity   Ensures that the contents of a message haven't changed since the message was signed.

Advanced security includes digital signatures and data encryption. By using digital signatures, a person can "sign" a message so that the recipient can be sure that the message came from the indicated source and wasn't changed during transit. Digitally signed messages undergo two processes: signing and verifying. A message is signed when it is sent, and the signature is verified when the message is received.

By using data encryption, a user can scramble data to ensure that only the intended recipient of a message can read it. Encrypted messages undergo two processes: encryption and decryption. A message is encrypted when sent and decrypted when received.

Note   Microsoft Exchange Server supports the Data Encryption Standard (DES), and the CAST and Secure/Multipurpose Internet Mail Extensions (S/MIME) encryption algorithms. DES encryption is available only with Microsoft Exchange Server software used in the United States and Canada.