About S/MIME email
S/MIME-standard brings two extra features to email. They may be used separately or in same email message. These features are electronic signatures and content encryption. Enabler for these features is a S/MIME certificate. It may be issued by Telia or some other Certification Authority. S/MIME enables following security elements to an email message:
SIGNATURE
- Identification of sender. A sender of a signed message can be identified reliably
- Deniability. Sending of an S/MIME message cannot be denied
- Integrity of a message. An S/MIME message cannot be altered during transport without breaking the signature
ENCRYPTION
- Privacy. An encrypted message can be opened only by the intended recipient
- Integrity of a message. Encryption as well as signing preserves the integrity of the message
A publicly trusted S/MIME certificate
A publicly trusted S/MIME certificate is a certificate, which has been issued by an organization, which complies with S/MIME Root Certificate Programs of browser manufacturers. A publicly trusted S/MIME certificate is automatically identified as a trusted certificate without manual importing of root and intermediate certificates to a corporate email system or to a email client software.
Telia Certificate Service plans to gain trust to all existing Root Certificate Programs for S/MIME certificates. Participation in Root Programs requires annual audits of the service and compliance to Root Program policies.
Participation to S/MIME Root Programs as of 2024:
| Root Program | TeliaSonera Root CA v1 | Telia Root CA v2* |
| Google Gmail | X | X |
| Microsoft Office 365/Outlook | X | X |
| Apple | X | X |
* Current root certificate for Telia S/MIME certification chain
S/MIME certificate types offered by Telia:
Sponsor Validated
This S/MIME certificate type has corporate identity of sender checked from public company registries. A message appears as a standard signed and/or encrypted email. However, it is possible to check following information by opening certificate details using an email client:
- Official name of the organization in O value
- NTR record of an organization (in Finland Business ID, in Sweden Organisationsnummer) as OrganizationIdentifier (OID.2.5.4.97) value
Mailbox Validated
This S/MIME certificate type has a validated sender email address
Inquiries and additional information about S/MIME service
Inquiries about S/MIME certificate service ordering and pricing: cainfo@telia.fi
Customer, who have Telia certificate portal account, may issue S/MIME certificates as self-service
S/MIME standard presentation by Microsoft here
Telia S/MIME business complies with CA/Browser Forum S/MIME Baseline Requirements