Department of Navy Chief Information Officer - News: Encrypting Email Containing PII

Audit Readiness of IT Systems (0)	DIACAP (12)	Information Sharing (48)	Open Source (3)
Awards (35)	DON Enterprise Architecture (49)	IT Asset Management (20)	Performance Measurement (2)
Business Case Analysis (11)	Enterprise Licensing Agreements (12)	IT Efficiencies (119)	Personal Electronic Device (18)
CIO Authorities (57)	Enterprise Services (35)	IT Expenditure Approval Authority (12)	Printing and Imaging (Copiers/MFDs) (17)
Civil Liberties (21)	Enterprise Software Initiative (32)	IT Governance (48)	Privacy (261)
Clinger-Cohen Act Compliance (25)	FISMA (11)	IT Infrastructure (17)	Public Key Infrastructure (19)
Cloud Computing (21)	Forms/Reports (14)	IT Investment Management (77)	Records Management (38)
Common Access Card (9)	Freedom of Information Act (26)	IT Portfolio Management (1)	Section 508 (10)
Cybersecurity (243)	Functional Area Manager (9)	Knowledge Management (34)	Social Media (33)
Cyberspace/IT Workforce (35)	GIG Standards (20)	Naval Enterprise Networks (38)	Spectrum (57)
DADMS/DITPR-DON (42)	Green IT (10)	Naval Networking Environment (12)	Statutory & Regulatory Compliance (11)
Data at Rest (10)	Identity Management (113)	NGEN (18)	Telecommunications (63)
Data Center Consolidation (37)	IM/IT Strategy (44)	NMCI (27)	Wireless (66)
Data Strategy (12)	Information Assurance (63)

Encrypting Email Containing PII

Published, May 31, 2012

In October of 2008, the Department of the Navy Chief Information Officer released a GENADMIN message that reiterated guidance requiring DON users to digitally sign and encrypt email messages. The below process explains what to do if you should encounter problems when encrypting an email.

Emails containing personally identifiable information (PII) in the body of the email or in an email attachment:

Should only be sent to recipients with an official need-to-know.
Should have "FOR OFFICIAL USE ONLY - PRIVACY SENSITIVE" in the subject line.
Should have "FOR OFFICIAL USE ONLY - PRIVACY SENSITIVE: Any misuse or unauthorized disclosure of this information may result in both criminal and civil penalties" in the body of the email.
Must be digitally signed.
Must be encrypted. (Always check to see if the attachments you are sending contain PII. Check all tabs.)

If the email containing PII fails to send due to encryption issues, do the following:

Select "Cancel" in the pop-up and remove the failed recipient from your email. Send the email.
Send a separate email to the unsupported email address(es) requesting a reply with a digitally signed email if their address is not in the Global Address List (GAL), or a reply after publishing their certificates, if their address is in the GAL.
DO NOT select "Send Unencrypted."

To publish a certificate:

Go to Outlook: Tools/Trust Center/Email Security/Publish to GAL
Right-click on the contact name and select "Add to Outlook Contacts"
Click on the contact and attempt to send the encrypted email again

Note: When publishing certificates it may be necessary to wait a few minutes to allow the server to replicate and the user's GAL to sync.

To manually sync the GAL, go to: My Computer/System (C:)/Program Files/Microsoft Office/GlobalDirectory/GALSyncU.exe

If a valid certificate is verified for the recipient, and the email still cannot be sent encrypted, try the following:

Go to the Outlook toolbar and click on the small arrow next to the Send/Receive button, and download the address book with "Full Details" (this may take 5-10 minutes). Attempt to send the encrypted email again.
'Cached Exchange Mode' can also cause encryption problems. To see if you are in this mode, perform the following in Outlook, go to: Tools/Account Settings/Email Security/Click on Change. If "Use Cached Exchange Mode" is checked, uncheck it and then attempt to send the encrypted email again. (Note: You will be required to shutdown and restart Outlook for the new settings to take effect.)

View the GENADMIN message: DON Policy Updates for Personal Electronic Devices Security and Application of Email Signature and Encryption.

Click here for more Privacy Tips.

TAGS: Privacy

Federal Acquisition Regulation; Basic Safeguarding of Contractor Information Systems

DON Revision of PII Breach Reporting Forms

Use of Best Judgment for Individual PII Breach Notification Determinations

DoD Component Responsibility to Ensure Government Contract Compliance with the Privacy Act

DON CIO Information

Online Services & Community

RSS Feeds

DON CIO FOIA

DON CIO Mobile Website

Website Accessibility

External Links Disclaimer

SECNAV DON CIO • 1000 Navy Pentagon
Washington, DC 20350-1000

This is an official U.S. Navy website (DoD Resource Locator 45376) sponsored by the Department of the Navy Chief Information Officer (DON CIO). The purpose of this website is to facilitate effective information flow about information management/information technology and cybersecurity issues and initiatives occuring within the Department of the Navy.

Please read our Privacy Policy notice.
Please read our Section 508/Accessibility Statement.

Trending

Encrypting Email Containing PII

Published, May 31, 2012

TAGS: Privacy

DON CIO Information

Online Services & Community