Outlook has been widely criticized for security problems. In fairness, some of those could not reasonably have been predicted when the original security features of Outlook were being designed, and others result from implementation mistakes that have been fixed in service releases and hotfixes. Microsoft has worked hard to strengthen Outlook security by adding better attachment controls, complete support for S/MIME, and a range of other security features.
- Outlook expert Sue Mosher maintains what must be the most comprehensive Outlook-oriented site on the Web at slipstick.com. In particular, her write-up of the management options for the Outlook Email Security Update is a great summary of how to make the product do what you want it to do.
- The Microsoft Office Resource Kit site has complete information on the Outlook security package, setting up RPC over HTTP, using IRM, and other Outlook security topics.
- See Microsoft's site for more information on the Windows RMS package.
- To learn more than you ever wanted to know about S/MIME algorithms, protocols, and implementation considerations, visit the S/MIME Working Group of the Internet Engineering Task Force (IETF).
8 tips in 8 minutes: A Microsoft Outlook email security tutorial
Tip 1: An overview of Microsoft Outlook email security features
Tip 2: Customizing the Microsoft Outlook Security Update
Tip 3: Customizing Outlook email security settings for end users
Tip 4: Setting up RPC over HTTP for Microsoft Outlook
Tip 5: Using S/MIME in Microsoft Outlook
Tip 6: Using Information Rights Management in Microsoft Outlook
Tip 7: Reaching into Microsoft Outlook's email security toolbox
Tip 8: Related resources on Microsoft Outlook email security
This chapter is an excerpt from Secure Messaging with Microsoft Exchange 2003 by Paul Robichaux, copyright 2004, published by Microsoft Press.