Sample code for 30+ languages & platforms
Unicode C

Send aes-gcm authEnvelopedData Encrypted Email

See more SMTP Examples

Note: This example requires Chilkat v10.0.0 or later

Demonstrates how to send encrypted email using 128-bit AES in GCM mode.

"AES-GCM" (Advanced Encryption Standard - Galois/Counter Mode) is a cryptographic algorithm that provides both encryption and integrity protection (authentication). When used in the context of email security with "authEnvelopedData", it often refers to a method of securely sending encrypted and authenticated email content.

Here’s a brief breakdown:

  • AES-GCM: Combines symmetric encryption (AES) with authentication, ensuring both the confidentiality and integrity of the message. It generates an authentication tag to detect any unauthorized changes.
  • authEnvelopedData: Refers to a type of structure used in secure email protocols (like S/MIME) to package encrypted content. It contains the encrypted data and associated encrypted session keys.
  • Email Security: When applied to emails, AES-GCM ensures the email content is encrypted (confidential) and also tamper-resistant (authenticated), with the encryption keys typically shared securely using asymmetric encryption (e.g., public key infrastructure, or PKI).

In short, AES-GCM with "authEnvelopedData" provides a way to encrypt and authenticate emails, making them confidential and resistant to tampering.

Chilkat Unicode C Downloads

Unicode C
#include <C_CkMailManW.h>
#include <C_CkCertW.h>
#include <C_CkEmailW.h>

void ChilkatSample(void)
    {
    BOOL success;
    HCkMailManW mailman;
    HCkCertW cert;
    HCkEmailW email;

    success = FALSE;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // The mailman object is used for sending and receiving email.
    mailman = CkMailManW_Create();

    CkMailManW_putSmtpHost(mailman,L"smtp.example.com");

    CkMailManW_putSmtpUsername(mailman,L"my_smtp_login");
    CkMailManW_putSmtpPassword(mailman,L"my_smtp_password");

    // The typical SMTP ports are 465 for implicit SSL/TLS or 587 for explicit SSL/TLS
    CkMailManW_putSmtpPort(mailman,465);
    CkMailManW_putSmtpSsl(mailman,TRUE);

    // Use the recipient's certificate for encryption.
    cert = CkCertW_Create();
    success = CkCertW_LoadFromFile(cert,L"c:/someDir/recipient_cert.cer");
    if (success != TRUE) {
        wprintf(L"%s\n",CkCertW_lastErrorText(cert));
        CkMailManW_Dispose(mailman);
        CkCertW_Dispose(cert);
        return;
    }

    email = CkEmailW_Create();

    CkEmailW_putSubject(email,L"This email is encrypted");
    CkEmailW_putBody(email,L"This is AES-GCM encrypted mail");
    CkEmailW_putFrom(email,L"Mary <mary@example1.com>");
    success = CkEmailW_AddTo(email,L"Joe",L"joe@example.com");

    // Specify that AES-GCM w/ authEnvelopedData is to be used. 
    // Also specify other params..
    CkEmailW_putPkcs7CryptAlg(email,L"aes-gcm");
    CkEmailW_putPkcs7KeyLength(email,128);
    CkEmailW_putOaepPadding(email,TRUE);
    CkEmailW_putOaepHash(email,L"sha256");
    CkEmailW_putOaepMgfHash(email,L"sha256");

    // Indicate the email is to be sent encrypted.
    CkEmailW_putSendEncrypted(email,TRUE);

    // Specify the certificate to be used for encryption.
    success = CkEmailW_SetEncryptCert(email,cert);

    success = CkMailManW_SendEmail(mailman,email);
    if (success != TRUE) {
        wprintf(L"%s\n",CkMailManW_lastErrorText(mailman));
    }
    else {
        wprintf(L"Mail Sent!\n");
    }



    CkMailManW_Dispose(mailman);
    CkCertW_Dispose(cert);
    CkEmailW_Dispose(email);

    }