Teamware Mail 7.1 Ed 1
Keeping your e-mail communication confidential
Enables users to send you to access your email messages from your smart mobile phone
signatures ensure data
integrity and verify
origin of the message
by the use of Smart
Cards - users do not
have to rely only on
passwords for security
Teamware Secure Mail has
and has been granted the
S/MIME-Enabled seal from
RSA Security Inc.
Teamware Mobile allows
and encrypted Public key ideology
mail Teamware Mail encryption and signing is based on public/private key
Teamware Mail is an technology. The idea behind this technology is that encryption/decryption is
intelligent electronic always based on a pair of keys. One is available publicly and one is private
messaging system with and held only by the owner.
reminders, custom views,
The keys are mathematically bound to each other so that anything encrypted
mailbox permissions, and
many more powerful features. with the public key can be decrypted only by using the private key of the
Teamware Mail supports both same key pair – and vice versa. In this way, a message encrypted using the
the Internet and X.400 recipient’s public key can only be read by the recipient who has the
messaging environments as appropriate private key.
well as fax integration and
working off-line. Mailboxes are Teamware Office 6.1 and later supports integration with Teamware Mobile.
also accessible through the This integration provides advanced mobile access to Mail, Calendar, and
use of standard Internet mail
clients via the POP3 and Personal Address Book (the last mentioned requires Teamware Office 7.0
IMAP4 protocols. Ed1 or later). More information on Teamware Mobile is available in
Teamware Mobile fact sheet and product overview.
Teamware Mail enables users
to send digitally signed and/or
encrypted mail messages. More information on Teamware Office and its other components can be
Teamware Mail is based on found in separate fact sheets.
the S/MIME standard and the
use of private and public keys.
With Mail you can securely
send confidential e-mail. You
can sign and/or encrypt your
messages using strong
algorithms and long keys.
Teamware Mail supports
smart cards, providing
Support for LDAP certificate
directories enables you to
connect Teamware Mail into
an existing Public Key
Teamware Mail has
interoperability testing and has
been granted the S/MIME-
Enabled seal from RSA
Mail is a part of the modular
Like the rest of Teamware
Office Mail supports use with
both a Windows client and
with an html-based
WebService client used
through a standard Web
Teamware Mail message and attachments. security options. The choices are
Teamware Mail provides each Decryption is done in the normal and non-repudiation sign
user with a mailbox, which workstation. The message file in and/or encrypt. Non-repudiation
enables sending and receiving the server is left unchanged. The sign means that the sender of the
mail and attachments, and user can fetch and save the message cannot deny being the
creating folders and subfolders to attachment either in decrypted or actual sender.
organize messages. encrypted format.
Users can get notifications of Certificate Authority RSA (4096 bit)
received messages. Mail enables support Signature
searching for messages and A Certificate Authority (CA) SHA-1, MD5, MD4, MD2
listing messages in various ways validates the user identity. They Encryption
both in online and offline mode. may also make the actual Smart Blowfish (256 bit), Triple-DES
Offline functionality allows users Card and they also typically (168 bit), DESX (120 bit),
to download messages from the provide an LDAP directory for DES2 (112 bit), DES (56 bit),
server, read and prepare user certificates. The user RC2 (40 bit)
messages offline and when back certificate binds the user name
connected to the server send the and the related public key to each Support for Smart Cards
messages. other. LDAP address and search The private key is the proof of
information, used to fetch the identity and is securely stored in a
How does Secure Mail certificate from the LDAP Smart Card. Some Smart Cards
work? directory, is stored in the contain two certificates with
Secure messages are created in Teamware Directory. In cases corresponding PIN codes – one
the same way as normal where a user may have several is used for message integrity
messages. The user then selects different certificates, a list is signing and decryption and the
the sign and/or encrypt option. In presented to allow selection of other is used for non-repudiation
the case of signed messages the the appropriate certificate. signing. The first PIN code is
users private key either from the valid as long as the card is in the
Smart Card or from the PKCS#12 When sending or reading a card reader, whereas the PIN
file is used. The user must supply secure message Teamware Mail code for non-repudiation has to
the correct PIN code or automatically checks the be entered again each time a
password. When messages are certificate validity from the CRL signature is made. Teamware
encrypted, the recipient’s public (Certificate Revocation List) Mail supports PKCS#11v2.11 API
key is first obtained from the maintained by the Certificate based Smart Card readers.
LDAP Certificate directory. Authority. This is done by the
OCSP server (Open Certificate Cardless functionality
When a user receives a signed Status Protocol). The cardless version of Mail uses
message, the message viewer certificates stored in PKCS#12
displays a security information In cases where the LDAP files. These X.509 certificates
button. Security information directory is not available or the and private keys have password-
shows whether the message was recipient’s public key is otherwise based access control.
signed and/or encrypted, and inaccessible, certificates can be
also the validity of the signature exchanged as mail attachments. Technical specification
and any related certificates. They can then be stored into a
local certificate cache for later Teamware Mail security features
If a received signed message is use. require:
also encrypted, a PIN code User Certificates
(Smart Card) or a Password Settings and algorithms Smart Card and a reader
(PKCS#12 file) is required to use In the main message window, the (optional)
the private key to decrypt the user can select the desired
Teamware®, Teamware OfficeTeamware Mobile, Teamware Mobile Express and other Teamware product and service names are
trademarks of Teamware Group Oy. Rights to other trademarks reside with their respective owners. Copyright Teamware Group Oy 2004. All
rights reserved. Teamware cannot accept any liability for any contents in this document and the information is subject to change without notice.
This document does not form part of a contract or license unless expressly agreed.
For further information contact:
Teamware Group P.O.BOX 135, FIN-00381 Helsinki Finland.
Telephone: +358 (0)207 515 300 Fax: + 358 9 547 2965
SetWeb 1.5 (required with
smart card readers)
Teamware Office 7.1 Ed 1 or
The SMTP/MIME connector
should be installed.
See Teamware Office 7.1 Ed 1
fact sheet for the description of
other technical details.