SECURE E-MAIL COMMUNICATION | Version 1.7 4/7© 2018 | ALDI SOUTH Group
In order to automatically check the authenticity of an e-mail address,
you will need a digital signature. This enables the recipient to clearly
identify the sender. In addition, it guarantees the integrity of the e-mail,
since the digital signature is destroyed, much like a seal when a letter
is opened, when changing information. Thus, when signing an e-mail,
the public key for the certificate is always attached so that the recipient
can check the authenticity and integrity of the e-mail.
Signing the e-mail prevents the information contained in the e-mail
from being changed, without the recipient noticing. However, they can
still be read without any coding . The e-mail has to be additionally en-
crypted to ensure confidentiality while exchanging information. The
most secure way to exchange e-mails is a combination of both signa-
ture and encryption.
S/MIME (Secure / Multipurpose Internet Mail Extensions) is a standard
process used worldwide for the secure exchange of information via
e-mail with certificates. The necessary components for S/MIME are
included in most modern e-mail programs; thus, ensuring simple and
transparent handling. This means that, provided the user activates the
appropriate option in the e-mail program, e-mails are automatically
encrypted before being sent and automatically decrypted when being
received.
The ALDI SOUTH Group only accepts the S/MIME process for e-mail en-
cryption.
Trust centres are organisations that issue digital user certificates and
are responsible for providing and assigning them as well as for ensu-
ring their integrity.
If you have an e-mail system that supports S/MIME, but do not have
your own e-mail certificate yet, you may request one from a trust cen-
tre. An overview of providers trusted by the ALDI SOUTH Group can be
found in the attachment. Issuing a certificate is subject to a charge.
In addition to the user certificate, a root certificate is required for e-mail
communication with the ALDI SOUTH Group. The root certificate allows
the user to check the authorisation status of the user certificates at the
ALDI SOUTH Group, i.e. your system is able to check whether the user
certificate has in fact been issued by the ALDI SOUTH Group and
whether it is still valid.
Signatures
S/MIME
Trust centres
Root certificate
Definition of terms