Digital signature and certificate

I have the certifcate obtained a while ago linked to my current email at the time. Then, my IP (Telus) passed over its email service to Google. My email address is still the same as before the change. Now, when I tried to encrypt an email message I got the following:

Invalid certificate
Microsoft Outlook cannot sign or encrypt this message because there are no certificates which can be used to send from the email addres 'xxx@xxxxxx'. Eather get a new digital ID to use with this account, or use the Account button to send the message using an account the you have certificates for.

My question: Can I somehow assign the certificate I have to my current account (i.e. after it was changed from Telus to Google)?

If it is not the right forum, where should I go to?

JanAdam

Is your new email address an

Code:

@gmail

address? Example:

Code:

myemail@gmailcom

Or is Telus using a Google server with a Telus domain name? A sure fire way of figuring this cluster out would be to contact Telus themselves. I've read about this crap before with Telus. I don't think they're a great ISP. At least I wouldn't use them if I lived up north.

Telus is using Google server with Telus domain names (there are two Telus.net and Telusplanet.net). So, myname@telus.net is a Google account. But, there may be still another sources of the problem, which I am invetigating. I am trying to import the certificate I have on my pc into Outlook 2010, but am not sure what 'certificate name' is in the import dialog box. Is it a name that user gives or is it something unique, allready assigned to the certificate? I have never used it for mail, thus my ignorance in the matter. I may get a new certificate, but would like to understand how those things work.

Does the following help?


email - Windows 10 - outlook 365 - Invalid certifi... - TELUS Neighbourhood

Cannot verify server identity - certificate expire... - TELUS Neighbourhood

Both are related to the ports and protocol you need to use.

My personal opinion. Outlook is not that great and I don't trust this certificate thing. I use Thunderbird in something called Sandboxie and the latest Thunderbird allows you to create PGP keys right inside the client its self. This is a huge step forward for the email client and should have been core implemented YEARS ago. Prior to now you had to use an add-on and a program running on your computer to use PGP. Now I don't need that Thunderbird functionality since all my PGP emails go through Protonmail. That means my Protonmail account holds the public and private PGP keys. When I get an email, the PGP email is automatically unencrypted on the fly as well as sending email is encrypted on the fly if you have your contact's PGP public key in your contact list. In order to use Protonmail with Thunderbird you need the Protonmail bridge software. And that costs 5 Euros a month. With the Protonmail App the bridge encryption ability is right there in the App.

Now some digital food for thought. Email is inherently insecure. Even if you use Protonmail. The send and return along with the subject is NOT encrypted and this is considered metadata and if one uses Protonmail you might be further scrutinized by some three letter agency. Do I trust Protonmail and their servers to hold my PGP keys? Not really. Also, what about the code in Thunderbird and its implementation of PGP ability? Just something to think about. I have many Protonmail addresses. Some of which were created very, very stealthy. Each one of my emails serves a specific purpose. If you wanted to send ultra high level TOP SECRET data you'd opt for something like Signal or Threema. And even those might not be too great. Especially the security of the device you use. Full disclouser on Threma. While the encryption and what not is great, they have had to relinquish some metadata on accounts, but it didn't reveal encrypted messages and what not due to the nature of how Threema works. So there is proof positive that if a court requests it, that's all they get, i.e, metadata.

By far the greatest method of private communication is a one time pad that's NEVER reused and human couriers. Osama himself knew that technology would give him up. Even the use of a two radio where orbiting satellites above can zero in on the exact location and also hear the chatter.

Anyway, if this is company related I can understated the use of the Microsoft bandwagon. But for everyday personal usage I'd go with a different email client like Thunderbird or some other reputable spin off. Note that Thunderbird packs some telemetry. So does Firefox. I thought I wrote about how to help block that but I guess I didn't. I'll have to create a post on my website on how to do it. In the mean time, I wrote how to stop the update crap here. Also, Firefox and Thunderbird as well has all major browsers use Webextension code for add-ons which is absolutely rife for an attack.

Thank you for all your hints. Jan