This is more of an enterprise security topic but I'm sure there are many information security professionals that also post here. If my company has a Public Key Infrastructure and distributes keys through our own CA server, how do we send encrypted emails to customers outside our domain? I'm assuming there will be trust relationships involved between our company's CA server and the vendor's? If there are other email encryption options that are more ideal and more of an industry standard, I'd like to know too. PGP? SSL? I'm not a security guru who implements these types of solutions for my company (obviously).. but it's just been on my mind and I was wondering.. how do I send this stuff outside to people encrypted??