With its ability to authenticate, digitally sign, and encrypt messages, public key cryptography seems like a natural fit for protecting e-mail: With one solution, you can ensure the integrity of the content and prove the identity of the sender. But public key cryptography is akin to peace in the Middle East--everyone agrees it's a good idea, but the associated complexities can derail implementation. . . .
With its ability to authenticate, digitally sign, and encrypt messages, public key cryptography seems like a natural fit for protecting e-mail: With one solution, you can ensure the integrity of the content and prove the identity of the sender. But public key cryptography is akin to peace in the Middle East--everyone agrees it's a good idea, but the associated complexities can derail implementation.

Traditional public key encryption schemes involve complicated processes such as issuing and managing keys and digital certificates, integrating cryptographic functions into existing applications, and locating a recipient's certificate. The difficulty of performing these functions often overrides any value that an enterprise might get from public key-based mail security.

The link for this article located at Andrew Conry-Murray is no longer available.