Solved

Encrypted email

Posted on 2013-01-15
1
313 Views
Last Modified: 2013-01-22
We currently use ZixMail for encrypted email.   In our enviornment, we have about 10 users that at times need to send email encrypted.   Does anyone have any other vendors or software packages that they would recommend?
0
Comment
Question by:bankwest
1 Comment
 
LVL 33

Accepted Solution

by:
Dave Howe earned 500 total points
ID: 38781908
Zixmail is a good choice, but if you are looking for alternatives, its probably best to see what your potential correspondents can support.

s/mime is the first ever used (back when it was called Privacy Enhanced Mail or PEM) and is based around X509 certificates just like HTTPS is. The technology is identical, meaning that you often find you must pay for a CA issued cert in order for potential correspondents to trust you (and that's per recipient). Strong point is that it is already built into the email solution you already have, so no further software installation is required.  

pgp (now openpgp as a standard) is another early runner - similar setup to s/mime (in that each sender must already have the recipient's key in order to encrypt) but using a user-driven trust model instead of the more commercial CA "Top down assertion of trust" model. Note that twice in the last year, that trust turned out not to be well founded, so the model of pgp (user assertion of trust, with you able to decide who you trust to assert trust, who to trust how to *assert* who to trust, and so forth) is being examined as a replacement in the HTTPS world now.
Its slow and complex to set up (plus requires more software, which you might need to pay for) but is a more open trust solution.

If you and all the people you talk to have your own mailservers, it may be worth looking at just using TLS over SMTP - by encrypting the *channel* between your server and theirs, you can ensure that the mail itself is never sent unencrypted between you, even if the mails themselves are never individually encrypted to a given recipient.

Finally, ZixMail is one of the cheaper options in the "oracle based" encryption market (ie. solutions that don't require the recipient to supply you a key in advance) however cisco (with their Ironport/CRES solution), Microsoft (with their "Hosted Email Encryption" FOPE component) and PGP (with their universal gateway) are all strong players in this space.
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Email attacks are the most efficient and effective way for cyber criminals and hackers to compromise a computer or network. We often find our-self second guessing the authenticity of an email message, for such instances we can follow practical princ…
This story has been written with permission from the scammed victim, a valued client of mine – identity protected by request.
The purpose of this video is to demonstrate how to set up a Mailchimp campaign. This will include styling and adding elements to a newsletter/email. This will be demonstrated using a Windows 8 PC. Mailchimp will be used. Log into your Mailchim…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now