Move to main content

Citizen Digital Certificate

 
:::
Index FAQ

FAQ

How to set up Secure Email tunnel?
  1. To set up Secure Email tunnel with your counterpart, you must first use your email address to send an email with digital signature to your counterpart who wishes to establish Secure Email tunnel with you. Prior to setting up the tunnel, do not use encryption since both sides have not yet coordinated the levels of encryption algorithms to use. This way, your system would probably use the lowest level of encryption algorithm (RC2 40-bit). The recipient must be a Citizen Digital Certificate user and must also send an email with digital signature.
  2. Take Microsoft Outlook Express for instance, after writing your email, click “Signature” on the upper function column to add digital signature to your email. Your signature will appear in the Sender column to the right. Click “Send” to send out your first Secure Email.
  3. Upon receipt of an email with digital signature from your counterpart, open the email to read the security instructions for this digital email. Click “Continue” to read the original contents of this email.
  4. To view contents of this digital signature, click the digital signature icon to the right.
  5. Under “Security”, you will see the email address of this digital signature and related information on certificate security. Click “View Certificate” to see more certificate information.
  6. In the View Certificate menu, click “Signing Certificate” or “Sender Certificate” to see the certificate used by the sender. “Recommended Encryption Algorithm” shows what encryption algorithm the sender is using. If you can use the same algorithm for encryption, both sides can now use a common algorithm for encryption of emails.
  7. Upon confirming sender’s certificate information and encryption algorithm, click “Add to Directory” to include sender’s email address. Thereafter, Secure Email communication is being established.
  8. After adding to the Directory, you can now formally set up the Secure Email tunnel. You must first reply the previous email with digital signature (you can click from the Directory if you have added the sender to it) and compile a test mail. (Or, you can directly use encryption communication. A test mail is a simple way of verifying this Secure Email tunnel.)
  9. Under Tools in your mail, click “Signature” and “Encryption” to add digital signature and encryption. Consequently, icons of digital signature and encryption will appear to the right of Sender and Recipient columns. Then, send out the compiled mail and wait for reply. With digital signature and encryption, the reply mail will verify that both sides have established a Secure Email Tunnel.
  10. Upon receipt of the reply email with digital signature and encryption, the mail will also contain security instructions. To open the encrypted mail, you will be requested to enter your PIN code. You must now insert your card and enter the PIN code to view the original contents of this email.
  11. If you successfully read the original contents of this email, it shows that you have successfully established the Secure Email Tunnel and hereafter you can conduct Secure Email communication using previously set digital signature and encryption.
System settings prior to using encrypted email?
  1. Open “Outlook Express”, click “Account” under “Tools.”
  2. Upon entering into “Account,” select “Newly Add” and then click “Email” to add new email.
  3. Upon entering into the newly added email screen, select your name and complete setting, then click “Next.”
  4. On the screen for setting electronic email address, fill in “Citizen Digital Certificate email address.” Only this way can you correctly use Secure Email. After setting email address, click “Next.”
  5. In the email server screen, fill in Internal Email Server and External Email Server. Refer to ISP's relevant setting instructions. After filling in name of the server, click “Next.”
  6. In Internet Mail login screen, fill in your email account and account password (not mandatory), click “Next” after completion.
  7. Click “Finish” to complete Secure Email account setting.
  8. When you finished setting your account, click “Contents” to proceed with system setting.
  9. Upon entering into the Contents setting screen, select “security” and you will see two setting options: “Signature Authentication” and Encryption Setting”. Click “Options” in “Signature Authentication.” The computer will list all the certificates used by this email address and the subscriber can select one among them for digital certification.
  10. To ensure that the contents of the selected certificate are correct, click “View Certificate” to view and verify the contents.
  11. After selecting your type of certificate, click “Confirm” and return to the previous menu to continue setting. In “Encryption Settings”, you can either select one certificate for encryption or select different certificates for encryption. Methods of selection and procedures are the same. After selecting the applicable certificate, pull down the menu to select encryption algorithms. If your operating system does not support high-level encryption algorithms, you must only select low-level encryption algorithms. Select the right encryption algorithms for applicable systems.
  12. After selecting your desired encryption algorithms, click “Confirm” to complete Secure Email system settings.