Hauke, I think you skated past a previous question about your idea, and I'm also interested in the answer so I'll ask it again. :) If you have a secure channel of communication by which you can exchange the symmetric password (which you would need to make your scheme work), why don't you use that channel for communication, rather than e-mail? Doug