Client-based mail encryption

Service for generating and storing a key pair

In order to support the protection of personal data, TU.it provides the infrastructure to obtain email certificates for client-based email signature and encryption.
Mail encryption is also recommended for confidential data, which may, for example, fall under a confidentiality agreement.

The digital signature of emails serves the recipient to verify the sender and ensure that the content was not changed during transmission.
S/MIME (Secure / Multipurpose Internet Mail Extensions) is the standard for encrypting and signing MIME-encapsulated emails.

To use S/MIME certificates for encryption and signing, a key pair of public and private keys is required due to the public-key encryption method used.

TU Wien employees and TU students can request such a key pair via a web portal, opens an external URL in a new window, which is signed by DigiCert, opens an external URL in a new window. IT Solutions thus provides a service that generates the required keys and stores them in the browser.

The recipient's public key required for the encryption is provided internally by TU through the automatic integration of the user certificates into the upTUdate address book (a signed email from the recipient must be received before sending an encrypted email to TU-extern).

To decrypt an email, the recipient's private key is required on the recipient side. This certificate must be installed on the computer on which the encrypted message is to be read.
Finally, the sender's public certificate is used by the recipient to check the integrity of the email.

Some companies offer free S/MIME certificates for TU external users, such as Comodo Free Secure Email Certificate and Secorio S/MIME with a validity of 1 year.

Illustration: Signature / encryption and decryption (CC-BY-SA: www.reddoxx.com)

Illustration: Signature / encryption and decryption (CC-BY-SA: www.reddoxx.com)

Illustration: Signature / encryption and decryption (CC-BY-SA: www.reddoxx.com)

Explanation for illustration: A certificate consists of a key pair, which in turn consists of a public and private key part.

Illustration: Signature (CC-BY-SA: www.reddoxx.com)

Illustration: Signature (CC-BY-SA: www.reddoxx.com)

Illustration: Signature (CC-BY-SA: www.reddoxx.com)

Explanation for illustration: A certificate consists of a key pair, which in turn consists of a public and private key part.

Service Center

Logo service center

© TU Wien

Ticketsystem Online Portal, opens an external URL in a new window
Hotline 01 588 01 42002

help@it.tuwien.ac.at
1040 Wien, Operngasse 11, EG

 

As a result of the coronavirus epidemic, the service center is now closed.