Encryption

Table of contents

      1. Encryption of e-mail
      2. Digital signature
      3. Encrypted access to websites
      4. Encryption of documents
      5. Links

Encryption of e-mail

For encrypted communication via e-mail, the sender and recipient require a user certificate. This is issued for TU Dresden e-mail addresses (Vorname.Name@tu-dresden.de).
The certificate must first be generated from the private key, which is generated during the application and stored locally, and the public key of the certificate provider (download link in the application approval e-mail) and exported as a certificate file in P12 format. This certificate can then be used in combination with the entire certification chain in mail programs:

  • MS Outlook: Import into the Windows certificate store by double-clicking, then select the correct certificate in the "Trust Center" in Outlook if necessary
  • Thunderbird: Import into the mail program's own certificate store

Here (currently not available!) the general procedure for application and installation by the ZIH would be described.

For users of centrally stored profiles at the Faculty of Chemistry and Food Chemistry, an additional export of the certificate is necessary (help from the responsible admin).

  • Individual steps for requesting and installing user certificates (currently not available due to change of certificate provider)

When you sign your own e-mails, the public key required for decryption is made known to the communication partner.

Digital signature

Even for unencrypted e-mails (e.g. to external recipients), the certificate offers a way of verifying the authenticity of the sender using the digital signature.
Documents (e.g. in Adobe Reader) can also be digitally signed as soon as the user certificate is included in the Windows certificate store.
Attention with Adobe: To avoid all warnings about digital signatures in PDF documents, the root certificate of the respective provider must be manually imported into the program and classified as trustworthy!

Encrypted access to websites

The websites of the Faculty of Chemistry and Food Chemistry can be accessed in encrypted form (HTTPS).
Encryption is mandatory for pages that request login information.

Encryption of documents

USB sticks with encrypted partitions are available for loan for the transportation of sensitive data, e.g. on business trips.
Contact person: Dr. M. Mann.

The file servers in the Faculty's directory service offer the option of creating encrypted data volumes.
This is recommended for the storage of sensitive data. The functionality must already be considered in the planning phase of the virtual machines.

Links

About this page

Matthias Mann
Last modified: Jan 24, 2025