Microsoft KB Archive/940470

= Forefront Server Security for Exchange Server does not decrypt encrypted messages =

Article ID: 940470

Article Last Modified on 10/12/2007

-

APPLIES TO


 * Microsoft Forefront Security for Exchange Server

-



INTRODUCTION
When Microsoft Forefront Server Security for Exchange Server is configured to scan encrypted messages, Forefront Server Security for Exchange Server does not decrypt the messages.

The following methods may be used to encrypt messages:
 * Secure/MIME (S/MIME)
 * Rights Management Services (RMS)
 * Pretty Good Privacy (PGP)

Forefront Server Security for Exchange Server cannot decrypt messages that are encrypted by using these methods during scanning. Forefront Server Security for Exchange Server maintains the security that encryption provides. However, Forefront Server Security for Exchange Server can scan only nonencrypted messages.

Forefront Server Security for Exchange Server performs only the delete action on the encrypted messages. It does not change the messages. Forefront Server Security for Exchange Server does not perform the following actions on the messages:
 * Clean or delete an infected item
 * Append a disclaimer

However, Forefront Server Security for Exchange Server can scan messages that have been digitally signed. It preserves any digital signatures on the messages.



MORE INFORMATION
For more information about message encryption, visit the following Microsoft Web site:

http://technet.microsoft.com/en-us/library/aa995740.aspx

For more information about Windows Server 2003 RMS, visit the following Microsoft Web site:

http://technet2.microsoft.com/windowsserver/en/technologies/featured/rms/default.mspx

Keywords: kbhowto kbinfo kbexpertiseinter kbantivirus KB940470

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.