Encryption?

[Chuck]

I recently sent a digitally signed email to someone asking them for an
encrypted reply. When they tried to reply they got an error saying that
they first needed to obtain their own certificate. In the security
options he selected "encrypt", but not "digitally sign". Why would he
need his own cert to encrypt something to me? My understanding of public
key encryption is that all he needs to encrypt something to me is the
public key in the certificate I signed the message with. I have also
published my cert to the GAL. So what am I doing wrong?

 

[Brian Tillman]

I recently sent a digitally signed email to someone asking them for an
encrypted reply. When they tried to reply they got an error saying
that they first needed to obtain their own certificate. In the
security options he selected "encrypt", but not "digitally sign". Why
would he need his own cert to encrypt something to me?

I don't think he does.

My understanding of public key encryption is that all he needs to
encrypt something to me is the public key in the certificate I signed
the message with. I have also published my cert to the GAL. So what
am I doing wrong?

Your understanding and mine coincide. You should need only the public key
of the recipient in order to send an encrypted (but unsigned) message.

 

[Chuck]

I don't think he does.


Your understanding and mine coincide. You should need only the public
key of the recipient in order to send an encrypted (but unsigned) message.

So what is going wrong?

 

[Brian Tillman]

So what is going wrong?

Had I an explanation I would have shared it. Sorry.

 

[Chuck]

Had I an explanation I would have shared it. Sorry.

I guess none of the elves at Microsoft reading this NG have an answer
either. ;-)

Thanks anyway.