How to send a secure email (maybe PGP)?


#1

Hello,

In an application I have to send an email containing a Credit Card
number, but I don’t know how to secure it!!!

Is there a ruby library or best practice for securing an email
content, I googled for it with no success.

Thanks in advance,

  • Dunnil

#2

On 08/05/07, Human D. removed_email_address@domain.invalid wrote:

Hello,

In an application I have to send an email containing a Credit Card
number, but I don’t know how to secure it!!!

Is there a ruby library or best practice for securing an email
content, I googled for it with no success.

There are some encryption functions in openssl. Hopefully the ruby
bindings and mime libraries could be used to compose an encrypted
message.

However, the critical part is that you have to get the key of the
receiver somehow and their mail client has to support the kind of
encryption you use.

You could probably guess the kind of encryption by looking at the key
(PGP vs the openssl certificates, I am not sure if there is any
other). However, you still need to collect the (public) keys.

Thanks

Michal


#3

-----Original Message-----
In an application I have to send an email containing a Credit
Card number, but I don’t know how to secure it!!!

Is there a ruby library or best practice for securing an
email content, I googled for it with no success.

There’s a perl CGI called Soupermail that does this. It uses a shell
exec call to PGP to encode a temporary file that contains the
information, then attaches that file to the email, or something like
that.

If you’re looking for something, you could either use that, or use it as
an example. I’ve used it several times on a number of consulting
projects, and it works great, so… Hope this helps :slight_smile:

-Doug