XFOR: How Messages Are Encrypted Between U.S. & International

 Last reviewed: April 3, 1997
Article ID: Q147399
The information in this article applies to:

- Microsoft Exchange Server, version 4.0

SUMMARY

Encryption is a feature of advanced security which provides confidentiality by allowing users to conceal data. The data is encrypted when it is written to disk and when it is sent over a network connection.

Microsoft Exchange Server can use one of three encryption algorithms to encrypt the contents of a message: CAST-64, DES, and CAST-40. The US/Canada version of the Microsoft Exchange Client supports all three algorithms. All other international (localized) versions of the Microsoft Exchange Client support only the CAST-40 algorithm.

MORE INFORMATION

All clients with the exception of those distributed in U.S. and Canada support 40-bit encryption only. Below are examples of how the encryption scheme is determined.

US/Canada client sends encrypted mail to international client: 

   The encryption is downgraded to 40bit for the entire message. Even if
   there are US/Canada recipients, they will get 40-bit also.
International client sends encrypted mail to US/Canada client: 

   The encryption used will be 40-bit since the international client is not
   capable of higher key length.
US/Canada client sends encrypted mail to US/Canada client only: 

   The message is sent with the preferred encryption algorithm which is
   either CAST64 (default) or DES depending on the setting of the algorithm
   in the site when the user was security enabled. If there are
   a mixture of CAST64 & DES users then we encrypt with CAST64.

Additional query words:
Keywords : kbother XFOR
Version : 4.0 5.0
Platform : WINDOWS

THE INFORMATION PROVIDED IN THE MICROSOFT KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.

Last reviewed: April 3, 1997
© 1998 Microsoft Corporation. All rights reserved. Terms of Use.