Secure Messaging on the Internet

E-Mail: rolf.oppliger@esecurity.ch
Phone/Fax: +41 079 654 84 37

Aims and Scope

Secure Messaging on the Internet offers a comprehensive understanding of secure Internet messaging, and brings together all the relevant and critical information needed to use OpenPGP and S/MIME-compliant software. It explores the conceptual and technical approaches followed by the developers of both OpenPGP and S/MIME, and gives a thorough treatment of the latest and most-effective technologies for secure messaging. Ideal for security and network managers, as well as professional system and network administrators, this easy-to-understand book is a complete guide to OpenPGP, S/MIME, Web-based and gateway solutions, certified mail, delivery platforms, and instant messaging. It can be used for self-study or to teach classes.

Table of Contents

1. Introduction
2. Internet Messaging
3. Cryptographic Techniques
4. Certificate Management
5. Secure Messaging
6. OpenPGP
7. S/MIME
8. Web-Based Messaging
9. Gateway Solutions
10. Certified Mail
11. Instant Messaging
12. Research Challenges and Open Questions
13. Conclusions and Outlook

1. Character Sets
2. Transfer Encoding Schemes
3. ASN.1 and Encoding Rules
4. Public Key Cryptography Standards

Reviews

• Marcin Niemiec, IEEE Communications Magazine, December 2015, p. 12

Errata List

• Page 128, line 2 from the bottom: "X12.17" must be replaced with "X9.17"
• Page 163, last line imn Table 7.4: "ZLIB" must be added in the MUST column

News

• In August 2018, a group of researchers from CheckPoint revealed vulnerabilities in Whatsapp (acronymed FakesApp) that could be exploited in some new attacks.
• In May 2018, a group of German researchers released a paper in which they describe a set of vulnerabilities and respective attacks (named EFAIL) that are relevant for S/MIME and OpenPGP implementations in user agents supporting HTML.