Sample code for 30+ languages & platforms
Pascal (Lazarus/Delphi)

Send aes-gcm authEnvelopedData Encrypted Email

See more SMTP Examples

Note: This example requires Chilkat v10.0.0 or later

Demonstrates how to send encrypted email using 128-bit AES in GCM mode.

"AES-GCM" (Advanced Encryption Standard - Galois/Counter Mode) is a cryptographic algorithm that provides both encryption and integrity protection (authentication). When used in the context of email security with "authEnvelopedData", it often refers to a method of securely sending encrypted and authenticated email content.

Here’s a brief breakdown:

  • AES-GCM: Combines symmetric encryption (AES) with authentication, ensuring both the confidentiality and integrity of the message. It generates an authentication tag to detect any unauthorized changes.
  • authEnvelopedData: Refers to a type of structure used in secure email protocols (like S/MIME) to package encrypted content. It contains the encrypted data and associated encrypted session keys.
  • Email Security: When applied to emails, AES-GCM ensures the email content is encrypted (confidential) and also tamper-resistant (authenticated), with the encryption keys typically shared securely using asymmetric encryption (e.g., public key infrastructure, or PKI).

In short, AES-GCM with "authEnvelopedData" provides a way to encrypt and authenticate emails, making them confidential and resistant to tampering.

Chilkat Pascal (Lazarus/Delphi) Downloads

Pascal (Lazarus/Delphi)
program ChilkatDemo;

// Demonstrates using the Chilkat Pascal wrapper via the C bridge DLL.
// Builds as a console application under Lazarus (FPC) or Delphi.

{$IFDEF FPC}
  {$MODE DELPHI}
{$ENDIF}
{$APPTYPE CONSOLE}

uses
  {$IFDEF UNIX}
  cthreads,
  {$ENDIF}
  SysUtils,
  CkDllLoader,
  Chilkat.MailMan,
  Chilkat.Cert,
  Chilkat.Email;

// ---------------------------------------------------------------------------

procedure RunDemo;
var
  success: Boolean;
  mailman: TMailMan;
  cert: TCert;
  email: TEmail;

begin
  success := False;

  //  This example requires the Chilkat API to have been previously unlocked.
  //  See Global Unlock Sample for sample code.

  //  The mailman object is used for sending and receiving email.
  mailman := TMailMan.Create;

  mailman.SmtpHost := 'smtp.example.com';

  mailman.SmtpUsername := 'my_smtp_login';
  mailman.SmtpPassword := 'my_smtp_password';

  //  The typical SMTP ports are 465 for implicit SSL/TLS or 587 for explicit SSL/TLS
  mailman.SmtpPort := 465;
  mailman.SmtpSsl := True;

  //  Use the recipient's certificate for encryption.
  cert := TCert.Create;
  success := cert.LoadFromFile('c:/someDir/recipient_cert.cer');
  if (success <> True) then
    begin
      WriteLn(cert.LastErrorText);
      Exit;
    end;

  email := TEmail.Create;

  email.Subject := 'This email is encrypted';
  email.Body := 'This is AES-GCM encrypted mail';
  email.From := 'Mary <mary@example1.com>';
  success := email.AddTo('Joe','joe@example.com');

  //  Specify that AES-GCM w/ authEnvelopedData is to be used. 
  //  Also specify other params..
  email.Pkcs7CryptAlg := 'aes-gcm';
  email.Pkcs7KeyLength := 128;
  email.OaepPadding := True;
  email.OaepHash := 'sha256';
  email.OaepMgfHash := 'sha256';

  //  Indicate the email is to be sent encrypted.
  email.SendEncrypted := True;

  //  Specify the certificate to be used for encryption.
  success := email.SetEncryptCert(cert);

  success := mailman.SendEmail(email);
  if (success <> True) then
    begin
      WriteLn(mailman.LastErrorText);
    end
  else
    begin
      WriteLn('Mail Sent!');
    end;


  mailman.Free;
  cert.Free;
  email.Free;

end;

// ---------------------------------------------------------------------------

begin

  try
    RunDemo;
  except
    on E: Exception do
      WriteLn('Unhandled exception: ', E.ClassName, ': ', E.Message);
  end;

  WriteLn;
  {$IFDEF MSWINDOWS}
  WriteLn('Press Enter to exit...');
  ReadLn;
  {$ENDIF}
end.