On Saturday, 2-July-2005 17:45, James Knott wrote:
The only one who'd have the private key is the person who generated it. It's merely certified by Thawte. However the public key can be distributed far and wide. So if I want to send you an encrypted e-mail, I'd encrypt with your public key. The encrypted message can only be read by someone possessing the private key. The signing works in reverse. A message signed with a private key, can only be verified by the public key. Any e-mail program capable of using S/MIME keys can have them verified by the key authority. The S/MIME keys are functionally equivalent to the GPG keys, for encrypting and signing.
While GPG is great for personal use, many businesses will accept only S/MIME.
Has anyone successfully imported Thawte's certificates into Kmail? I continue to get a "decrypt failed" error. Even tried going through the KDE control panel. The certificates are installed there, but when it tried to install them in Kmail, I still get a "decryption failed" error.