|
Posted by SecurityAce36 on March 1, 2005, 8:00 am
If you were Registered and logged in, you could reply and use other advanced thread options
I am currently searching for the best application or service to provide
end to end security for delivering encrypted emails from one company to
another accross the Internet. I need the solutions to provide Smime,
PGP, TLS, SSL, etc.
My goal is to some how have the app or user decide if the email needs
to be encrypted, then apply a cert which can be maintained. The email
then sent to the recpt. who then decryptes the message using either of
these options. I hope that the gateway can negotiation which type to
use with the other gateway/exchange server.
If the negotiation fails then just send an email with a link back to an
SSL web server so the email is still encrypted. This needs to work for
all companys including people with hotmail, yahoo, etc. accounts.
I am currently looking at:
sigaba
Tumbleweed
Iron Mail
Hushmail
utimaco
In this exact order
Does anyone have experience with these products or trying to secure the
company external email?
|
|
Posted by SecurityAce36 on March 1, 2005, 11:31 am
If you were Registered and logged in, you could reply and use other advanced thread options
Come on,
Some one has to have some experience
|
|
Posted by Walter Roberson on March 1, 2005, 9:42 pm
If you were Registered and logged in, you could reply and use other advanced thread options
:end to end security for delivering encrypted emails from one company to
:another accross the Internet.
:My goal is to some how have the app or user decide if the email needs
:to be encrypted, then apply a cert which can be maintained. The email
:then sent to the recpt. who then decryptes the message using either of
:these options. I hope that the gateway can negotiation which type to
:use with the other gateway/exchange server.
:This needs to work for
:all companys including people with hotmail, yahoo, etc. accounts.
hotmail, yahoo, etc. are running standard ESMTP servers; ESMTP does
not have any option to negotiate security (plain SMTP doesn't either,
which is important because your solution has to work for "all companys".)
I seem to recall hearing of proposed extensions to ESMTP to
negotiate security, but I do not recall any details, and I have never
encountered any system that implimented such an extension. [DoD might
perhaps have implimented such a thing...]
--
"Infinity is like a stuffed walrus I can hold in the palm of my hand.
Don't do anything with infinity you wouldn't do with a stuffed walrus."
-- Dr. Fletcher, Va. Polytechnic Inst. and St. Univ.
|
| Similar Threads | Posted | | Best Practices for secure delivery / transportation of physical media (tapes, CDs, etc.) | April 24, 2007, 4:13 pm |
| Secure email | October 13, 2006, 11:37 pm |
| Secure email | February 28, 2007, 6:03 pm |
| public email systems - who is more secure? | March 20, 2007, 12:04 am |
| New product for secure data storage & email | March 12, 2006, 12:46 pm |
| hijacked email | June 25, 2005, 1:56 am |
| Re: Barcode Email | August 10, 2005, 2:33 pm |
| Email Encryption | September 17, 2005, 12:20 am |
| Use How to use the SAME Key for another eMail address ? | September 22, 2005, 7:31 am |
| email privacy | December 8, 2006, 2:30 am |
|
XML site map