I had the great opportunity to evaluate several Secure Mail implementations and the one our Management picked was the Secure Mail Gateway (SMG) product from http://www.globalcerts.net.
This wasn't my first choice but Management rated the cost factor higher than I did. Being an IT type of a guy, I like all the bells and whistles, reports and the ability to monitor message flow. The model we purchased was a simple gateway that we placed in front of our Mail Server. Implementation is built on a private PKI implementation and a private DNS. User setup is either manual, csv import or it can be setup to create an account for everyone sending an outbound message. The end user simply inserts [secure] on the subject line and the box will basically send the recipient a notice to visit the box, via SSL web page. On the first visit, the recipient will be routed to create a username and password and then they are allowed to retrieve the secure message. The box will harvest Signed Messages Certs on incoming mail and will use the harvested Cert to reply. In addition, if the recipient also uses an SMG, the message will automatically send the message securely. GlobalCerts just released a newer model and we're schedule to receive it in the next 30 days. Under the current implementation, I had no way to tell if a secure message had been retrieved or how many secure messages were waiting in que. There was no SPAM, Antivirus or Account verification built in which required us to place another machine in front of this one to process those services prior to handing off to the SMG, which in turned passed it to the MTA. We've had one outage over the last two years due to configuration error on GlobalCerts. They made some changes to their private DNS infrastructure in April 2006 which took everyone down for approximately a week. *Warning* Marketing Fodder to follow* >From what I'm told under the NEW version, I will have the ability to tell if messages are waiting in que or how many have been processed. Also account verification from an imported text file, SpamAssassin and ClamAV are installed and I'll have the ability to modify, create or change these configurations. They related the customer can request Root access and it will be provided. **End of Marketing Fodder** As our contract was coming up for renewal, I checked out PostX and CenturionMail. http://www.centurionsoft.com/centurionmail/index.html http://www.postx.com CenturionMail is a plugin and will take the message and encrypted it with a zip, cab or its own cef file extension. If you choose cef, the recipient will have to run a small configuration utility or manually change .cef to .exe so it will run when clicked. If you use ZIP or CAB, most of us block password protected zip and cab files so more than likely the recipient will also. This means requesting the recipient mail administrator to whitelist attachments coming from your domain. Does this make anyone feel more secure??? PostX was my first choice in the beginning and during our recent evaluations but I couldn't get management to buy in due to the increase cost over GlobalCerts. It functions similar to the SMG but instead of the recipient receiving a notice, they receive a secure html attachment and much like an SSL page, when you click to open the attachment it downloads the public key to decrypt the message. The first time you click to open a PostX secure attachment it redirects you to insert a username and password. Further encrypted messages will only require you to insert the password. Reporting is much more detailed and with the acquisition of IronPort, you'll shortly have a single box providing Encryption along with Anti-Spam and Anti-Virus. Encryption can either be triggered by inserting a keyword in the Subject Line or it can search the message for lexicons and automatically encrypt the message. Two years ago we did look at ZixMail and they had several ways to deploy their product. From a Gateway on our network to plugins we could install on our machines. The gateway product was based on matching lexicons or keywords which tripped the encryption process. Hope this helps Chuck Cahill YFCS, Inc -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kevin Rogers Sent: Wednesday, June 13, 2007 3:45 PM To: [email protected] Subject: Re: [Declude.JunkMail] Looking for an Secure Email Solution that works with Imail Premium 2006.2 and declude 4.x Has anyone heard of or used either PostX (now a part of Ironport, which is now a part of Cisco) or ZixMail? We are in the market for a secure email solution as well and would like to know if anyone on this board is using something that they could recommend. Kevin [EMAIL PROTECTED] wrote: > I too have would love to see a solution for this. I have talked to > doctor's offices that need this type of functionality for their email > communications of patient information. Usually between two doctors or > a doctor's office and a hospital. > > I will keep watching this thread with great interest. > > Don > > ----- Original Message ----- From: "Dave Doherty" <[EMAIL PROTECTED]> > To: <[email protected]> > Sent: Thursday, June 07, 2007 7:42 PM > Subject: Re: [Declude.JunkMail] Looking for an Secure Email Solution > that works with Imail Premium 2006.2 and declude 4.x > > >> Interesting. I wonder how it works "under the hood". >> >> You send securely to anyone, and they create a password and read the >> mail. Or at least that's what I got out of the NetSol presentation. >> >> As the sender, you add a small plugin to Outlook / OE, but the >> recipient doesn't need to do anything other than create the password. >> That doesn't sound very secure on the receiving end to me. I imagine >> the encryption works fine for keeping people from reading the mail in >> transit, but I don't see how you can be sure without a handshake of >> some kind how you know the intended recipient is the one who got the >> message. >> >> -Dave Doherty >> Skywaves, Inc. >> 97 Webster Street >> Worcester, MA 01603 >> 508-425-7176 >> >> >> >> ----- Original Message ----- From: "Howard Smith (N.O.R.A.D.)" >> <[EMAIL PROTECTED]> >> To: <[email protected]> >> Sent: Thursday, June 07, 2007 5:35 PM >> Subject: RE: [Declude.JunkMail] Looking for an Secure Email Solution >> that works with Imail Premium 2006.2 and declude 4.x >> >> >>> Here are examples of solutions offered by other ISP: >>> >>> https://sr.securemail.att.com/securemail/ >>> >>> http://www.networksolutions.com/email-account/email-security.jsp >>> >>> >>> Howard Smith >>> . >>> >>> >>> >>> -----Original Message----- >>> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of >>> Darrell >>> ([EMAIL PROTECTED]) >>> Sent: Thursday, June 07, 2007 4:56 PM >>> To: [email protected] >>> Subject: Re: [Declude.JunkMail] Looking for an Secure Email Solution >>> that >>> works with Imail Premium 2006.2 and declude 4.x >>> >>> Are you looking for a solution like the PGP plug in's for Outlook or >>> something else? >>> >>> Darrell >>> >>> ------------------------------------------- >>> Check out http://www.invariantsystems.com for utilities for Declude and >>> Imail. IMail/Declude Overflow Queue Monitoring, SURBL/URI integration, >>> MRTG Integration, and Log Parsers. >>> >>> Howard Smith (N.O.R.A.D.) wrote: >>>> >>>> >>>> I am an ISP that have customers in need of an Secure Email Solution >>>> such as a outlook plug-in , similar to what ATT and network solutions >>>> offer their email customers . Do anyone know of any company having an >>>> offering for ISP? >>>> >>>> >>>> >>>> Thanks >>>> >>>> >>>> >>>> Howard >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> Howard Smith >>>> >>>> >>>> --- >>>> This E-mail came from the Declude.JunkMail mailing list. To >>>> unsubscribe, just send an E-mail to [EMAIL PROTECTED], and >>>> type "unsubscribe Declude.JunkMail". The archives can be found >>>> at http://www.mail-archive.com. >>> >>> >>> --- >>> This E-mail came from the Declude.JunkMail mailing list. To >>> unsubscribe, just send an E-mail to [EMAIL PROTECTED], and >>> type "unsubscribe Declude.JunkMail". The archives can be found >>> at http://www.mail-archive.com. >>> >>> [.This E-mail scanned for viruses by www.SecureTrek.com, a N.O.R.A.D. >>> Company-v2ta] >>> >>> >>> >>> >>> >>> >>> --- >>> This E-mail came from the Declude.JunkMail mailing list. To >>> unsubscribe, just send an E-mail to [EMAIL PROTECTED], and >>> type "unsubscribe Declude.JunkMail". The archives can be found >>> at http://www.mail-archive.com. >>> >>> >>> >> >> >> >> >> --- >> This E-mail came from the Declude.JunkMail mailing list. To >> unsubscribe, just send an E-mail to [EMAIL PROTECTED], and >> type "unsubscribe Declude.JunkMail". The archives can be found >> at http://www.mail-archive.com. >> >> > > > > --- > This E-mail came from the Declude.JunkMail mailing list. To > unsubscribe, just send an E-mail to [EMAIL PROTECTED], and > type "unsubscribe Declude.JunkMail". The archives can be found > at http://www.mail-archive.com. > > > --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com. --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
