When selecting the Journal feature on the server, it is an option to encrypt the stored messages with a specific id. If users are selecting to encrypt their mail amongst themselves and the journalling feature is grabbing a copy of those messages, will it be able to encrypt those messages with the defined id even though it’s already encrypted with the users keys?
Subject: Journalling with encryption
It will be able to encrypt them with the new id, but that’s ultimately irrelevant, since the data is already encrypted, so that ID will not be able to decrypt it.
Subject: Journalling with encryption
Hello Randy,
For the most part, the answer to your question is No. Journalling won’t be able to re-encrypt those messages. It will just save them as is which is OK because the most important thing is that the messages are not stored in clear text. If, however, the ID specified for journalling is one which would normally be able to receive and open the message, the message will be decrypted and then encrypted using the specified ID.
To my way of thinking, this is where a company’s mail policy comes into play. If the company wants to be able to examine the contents of the mail messages in mailjrn.nsf, users should not be allowed to encrypt their messages. Another tactic would be to allow encryption, but have a policy on how and when the company can go about acquiring an unencrypted copy of a message.
In the end, a company’s mail policy rules the day.
Sincerely,
Mark