Encryption Management Server cannot decrypt S/MIME email encrypted using the RSAES-OAEP key transport algorithm

book

Article ID: 170265

calendar_today

Updated On:

Products

Encryption Management Server

Issue/Introduction

Encryption Management Server cannot decrypt S/MIME email encrypted using the RSAES-OAEP (RSA Encryption Scheme - Optimal Asymmetric Encryption Padding) key transport algorithm.

The mail log will contain entries like this when Encryption Management Server attempts to decrypt an RSAES-OAEP encrypted message:

2017/10/11 09:30:09 +01:00  INFO   pgp/messaging[3412]:      SMTP-00001: recipient [email protected]: policy rule match: chain: "Inbound", rule: "Decrypt Message (SMTP)"
2017/10/11 09:30:09 +01:00  WARN   pgp/messaging[3412]:      SMTP-00001: fatal exception evaluating policy for recipient [email protected]: unimplemented public key operation - jumping to Exception chain

Cause

This is by design.

Environment

Encryption Management Server 3.3 and above.

Resolution

Symantec Corporation is committed to product quality and satisfied customers.

Technical Support filed a Feature Request to add the functionality listed above. This Feature Request is currently being considered by Symantec Corporation to be addressed in a forthcoming version of the product.

There is no guaranteed date for this request from the Encryption Product Management team, or the Encryption Engineering team at this time. Please be sure to refer back to this article periodically as any changes to the status of the request will be reflected here. You can also subscribe to this article to receive notification when it is updated.