Menu

Secure E-Mail - FDA

Mar 23, 2023

Secure E-Mail - FDA

Prerequisites


Before you can send and receive secure e-mails with the FDA you must have already:

Setup


The FDA uses self-signed Certificates so the process for this is slightly different than standard S/MIME with trusted Certificates.

  1. Compose a new e-mail in Outlook.
  2. The e-mail should be sent to SecureEmail@fda.hhs.gov.
  3. Put the e-mail address of your FDA point of contact in the subject line.
  4. Click on the Options tab in Outlook and click Sign.
  5. You can leave the body of the message blank; it should resemble the example below:

    SEtup 5.png
  6. Send the E-Mail.
  7. You'll receive an automated reply signed by the e-mail address you put in the subject field.

    Right click the e-mail address in the From field and click Add to Outlook Contacts.

     
  8. Click the Certificates button along the ribbon in the contacts window:

    setup 8.png
  9. Click the Properties button along the right hand side of the Certificates window:

    setup 9.png
  10. Click on the Trust tab and choose Explicitly Trust this Certificate:

    setup 10.png
  11. Press OK
  12. Press Save & Close to update the contact information. Choose Update if the contact already exists.

    setup 12.png
  13. The FDA's certificate has now been saved and explicitly trusted in Outlook. The final step is to send a signed and encrypted e-mail to your FDA contact to show that everything is successfully set up.

Confirmation

  1. Reply to the e-mail. This time it should be going to your FDA contact.
  2. On the Options tab in Outlook, this time choose both Encrypt and Sign.
  3. In the body of the e-mail you can put something to the effect of:
    "I have saved your certificate and contact details in Outlook. This e-mail should now be encrypted."
  4. Press Send.

    If everything was set up correctly, the FDA contact should receive and encrypted message from you. If you did not set this up correctly, Outlook will not allow you to send an encrypted message.


Reference


1. Using S/MIME for Email Encryption? Key Recovery Basics 

Related Articles

Step 4: Export Public Key - FDA ESG

Jun 30, 2015, 10:27 AM

Export Public Key Open Internet Explorer. Click on the gear icon in the top right-hand corner. Click Internet Options.​

Read More

Step 5: Set Up a Test Account - FDA ESG

Jul 15, 2015, 11:25 AM

Setting Up a Test Account You will receive a reply to your request in Step 1 from the FDA containing a temporary UserID and Password for your WebTrader test account. Once you receive this e-mail you are ready to set up the test account. Be sure to have the following items available during this process: Company and Contact Information Your Public Key (.p7b) that you exported in Step 4.

Read More

Step 2: Order Client Digital Certificate - FDA ESG

Aug 3, 2015, 12:15 PM

Step 2: Order Client Digital Certificate

Read More

GlobalSign System Alerts

View recent system alerts.

View Alerts

Atlas Discovery

Scan your endpoints to locate all of your Certificates.

Sign Up

SSL Configuration Test

Check your certificate installation for SSL issues and vulnerabilities.

Contact Support