What are dual key certificates and how are they different from single key certificates?
Dual Key certificates are certificates that the functionality is split between two certificates. This means you will receive two certificates rather than one certificate. The Signing Certificate is used to sign your email or to otherwise prove that you are who you say you are. The Encryption Certificate is used to handle the encryption of your email. Dual Keys enable a more secure system for backing up your certificates. A copy of your Encryption Certificate should always be kept to enable the decryption of any emails encrypted using this certificate. In fact it needs to be retained for a period longer than the life of the certificate, as you may need to decrypt emails you received some time ago. However, retaining a copy of your Signing Certificate is not required and reduces the security of this certificate. That is, the more copies of this certificate that exist, the greater the possibility of somebody using a copy to impersonate you. If you had just one certificate to both sign and
