Secure E-Mail Quick Users Guide - HSH Nordbank

HSH Nordbank AG
Secure E-Mail
Quick Users Guide
Last update
June 2009
Secure E-Mail – What’s it all about?
With Secure E-Mail HSH Nordbank is reacting in response to the increasing threats to e-
mail communication in the Internet and provides its customers and partners with an option
to communicate confidential information in a secure manner.
Beside the fact that e-mail is misused to transmit damaging codes (viruses, Trojans) and
undesired advertising (Spam), there are three main problems which can be counteracted
by Secure E-Mail:
Confidentiality
An e-mail can be compared to a postcard in that it can be read by anyone during transmission.
One needs to be aware that nowadays the “interception” of worldwide data streams
is possible by means of simple software programs which can be downloaded from the
Internet. The contents of unprotected e-mails can be easily read with these programs and
sensitive information could possibly fall into the wrong hands. It is a certain fact today that
various organizations professionally “intercept” and evaluate e-mail traffic.
Authenticity
The e-mail program displays the sender. But are you aware that dispatcher details in e-
mails are easily forged? This can be done with little technical support by persons with
hardly any technical expertise.
Integrity
During transmission e-mails can be manipulated. This is also possible with comparatively
little technical effort.
Secure E-Mail – What do I need?
The HSH Nordbank provides its customers and partners with two options for secure e-mail
communication:
• Secure e-mail as password protected PDF file
• Encrypted e-mail communication
To use encrypted e-mail communication you will need either an S/MIME certificate issued
with your name and e-mail address, or a PGP code and e-mail program.
If you have neither an S/MIME certificate nor PGP code, we recommend that you have an
S/MIME issued (minimum: class 2) by the certification centre. The charge for this service
is approximate € 30-60 per certificate/year.
These certificates are always issued to specific persons and e-mail addresses allowing
that person to securely communicate with any other partner.
1 | 3

HSH Nordbank AG
Secure E-Mail – How does it work?
Whether you decide to use the PDF alternative or encrypted e-mail communication, in
order to use Secure E-Mail you will need to register once. We spent every effort to set up
the registration process as convenient as possible.
The initial step of the registration process involves your receiving an e-mail marked confidential
from a HSH Nordbank staff member.
Initially, this e-mail is held back by our Secure E-Mail system and a registration mail is
dispatched instead. By receiving this e-mail, your e-mail program may generate a warning
signal. The reason for this is that this e-mail has been signed with an HSH Nordbank certificate
which is unknown to your system. Please set your e-mail program in such a way as
to trust and accept this certificate so that in future these warnings will cease.
The received registration mail contains information regarding the registration process and
provides you with the following option / alternative:
• 1 st Option: You decide to receive a secure e-mail via a password protected PDF-file. A
corresponding dialogue is asking you to set a password. This password is being used
to encrypt your e-mail. You have to enter your password in order to read the secure e-
mail in your PDF-viewer. Please keep your password in safe custody. You are able to
answer within the PDF-file in a secure mode, too.
• Alternative: You already have an S/MIME certificate or PGP code. In this case, please
send the certificate in the form of a response to this registration mail to the Secure E-
Mail system (S/MIME certificates can be sent by means of a digitally signed response,
a PGP code as file attachment)
A HSH Nordbank staff member will be available to render any support you may need in
this process and, if required, issue you with a registration password.
Please note: This registration process takes place only once and the Secure E-Mail system
with its detailed description has been set up to be as convenient as possible.
Following the successful registration, the original e-mail is then delivered and for the future
secure e-mails are transmitted automatically according to the chosen registration mode.
2 | 3

HSH Nordbank AG
Secure E-Mail – FAQ
What do I need to participate in coded e-mail communication with HSH Nordbank?
Either a S/MIME certificate or a PGP code or you decide for Secure E-Mail as a password
protected e-mail.
If I have a S/MIME certificate, or a PGP code and send this to the Secure E-Mail system,
will it be used immediately?
Generally, yes. In the Secure E-Mail System there are various positions of trust set up for
certificates, so that many incoming certificates are directly trusted. If this is not the case,
the administration carries out a manual check. This can be combined with a telephone
check of the digital fingerprint stored in the certificate or code. But don’t worry, this procedure
serves security, is generally known to code users and creates confidence.
What do I need in order to read coded e-mail communication from HSH Nordbank with
Blackberry® ?
Following this link you find further information how to use secure e-mail on your Blackberry®.
Link to the document directly
http://www.hsh-nordbank.de/media/secureemail/smime2009_03.pdf
Link to the Secure E-Mail Internet-page:
www.hsh-nordbank.com/secure_email/en
Contact
Regarding any problems with
Secure E-Mail please contact the
Service Center
at HSH Nordbank
+49 431 900-23423
3 | 3