Email Encryption

Mark_Wiater · June 13, 2006, 12:50pm

Hello,

Are there any development plans to add email encryption to RT?

I’m most interested in encrypting information leaving the system,
but I’d probably also be interested in encryption support for
inbound email too.

I think I read that there was discussion at some point about
supporting RT commands in email and that would incorporate signing.
That’s also a desirable feature.

Are any others interested in such a capability? (trying to gauge
interest) If so,which is preferred, PGP/GPG or S/MIME?

Thanks

Mark

Joshua_Colson · June 13, 2006, 3:21pm

Are any others interested in such a capability? (trying to gauge
interest) If so,which is preferred, PGP/GPG or S/MIME?

I’m very interested in such a feature. I plan on implementing it myself
if I ever get the time. Unfortunately, time is in short supply.

I think that it would need to support both PGP and S/MIME as not all
MUAs support a single spec. It seems as though it wouldn’t be terribly
difficult to extend RT to do this. My idea was just to have a user
custom field that would hold a public key for each user. And a
configuration option that would reference the private key for RT.

Joshua Colson jcolson@realm.ination.cc

Chuck_Boeheim · June 13, 2006, 5:28pm

Our need is more for signing of items. We would like to be able to sign
certain
items with a PGP or S/MIME private key, and be able to verify both that the
email that goes out and the item in the database were signed by the correct
person and not altered since it was signed. It’s important to know that
certain approvals are not forged, or once issued are not altered to say
something
different.
-Chuck Boeheim
Stanford Linear Accelerator Center

Joshua Colson wrote:> On Tue, 2006-06-13 at 08:50 -0400, Mark Wiater wrote:

Are any others interested in such a capability? (trying to gauge
interest) If so,which is preferred, PGP/GPG or S/MIME?

I’m very interested in such a feature. I plan on implementing it myself
if I ever get the time. Unfortunately, time is in short supply.

I think that it would need to support both PGP and S/MIME as not all
MUAs support a single spec. It seems as though it wouldn’t be terribly
difficult to extend RT to do this. My idea was just to have a user
custom field that would hold a public key for each user. And a
configuration option that would reference the private key for RT.

smime.p7s (3.25 KB)