Is opportunistic TLS set up in your email servers? Could that be what your mgmt is requesting?
On Sunday, June 19, 2016, Liby Philip Mathew <[email protected]> wrote: > Thanks for the information. I too haven’t seen much encrypted mails that > are coming to our mail servers. This was requested for external mails. I > will be better off without encryption if not insisted by the management. > > Thanks & Regards > Mathew > > > > From: [email protected] <javascript:;> [mailto: > [email protected] <javascript:;>] On Behalf Of Michael B. > Smith > Sent: Thursday, June 16, 2016 7:13 PM > To: [email protected] <javascript:;> > Subject: RE: [Exchange] email digital encryption > > Is the need from the OP internal email only? Then you can do it for free, > using S/MIME along with AD Certificate Services. Outlook and Ootw (OWA) > both have built-in support for this. It’s trivial to implement, maintain, > and support (once you have the required CA infrastructure in place). > > If you need external email support, then you are far better off going > third party. Mr. Pace gave you one option below, another is ZixMail. With > ZixMail you can use their cloud service or you can put an appliance > on-premises. > > The challenge with encryption (and this has been true since the very first > support for email encryption) is key exchange. That is, how do you get the > public keys to the required parties to decrypt your email, and how do you > attest properly that a key is *you* and not someone else? It’s complicated > and it doesn’t scale well if you have external recipients. > > In terms of “how many”.. I would say 100% in health care and financial > services. Outside of those two arenas, it is uncommon (in my experience). > > > From: mailto:[email protected] <javascript:;> [mailto: > [email protected] <javascript:;>] On Behalf Of Mike Pace > Sent: Thursday, June 16, 2016 11:46 AM > To: mailto:[email protected] <javascript:;> > Subject: Re: [Exchange] email digital encryption > > We encrypt some emails using http://virtru.com. This is in conjunction > with a recent move to Google for Work (gasp from Exchange crowd). Sender > has to put [secure] in the subject line and reciever has to login to > virtru's site to retrieve. Pretty simple. Per user/per year pricing. > > What you're looking for may be on a much larger scale. We are currently > only using this for Attorneys and Health Department. > > > > Mike Pace > Davis County Information Systems > 61 South Main Street > Suite 201 > Farmington UT 84025 > (801)451-3437 > > On Thu, Jun 16, 2016 at 1:38 AM, Liby Philip Mathew <mailto: > [email protected] <javascript:;>> wrote: > Hi, > I have been asked by my manager to study on implementing digital > encryption. I have few doubts. > > 1 Roughly what percentage of organizations use digital encryption? > 2 Do I need to have additional h/w resources? > 3 Is it worth implementing digital encryption? > 4 what are known pros & cons? > 5 How easy is it to implement & maintain? > 6 What would be the approximate cost for each certificate? > 7 Is the cost recurring? > 8 Any other related valuable information > > TIA > Mathew > Disclaimer > > [The information contained in this e-mail message and any attached files > are intended solely for the use of the individual or entity to whom they > are addressed. This transmission may contain information that is > confidential, Path Solutions Private, or exempt from disclosure under > applicable law and/or Path Solutions information security policy. The > receiver of this communication shall not transmit any part of this message > unless the email subject clearly classify it as “Public” or a written > permission has been given by the information assets owner. If you have > received this e-mail in error, please notify the sender immediately and > delete all copies, any disclosure, copying, distribution, or use of the > information contained herein is STRICTLY PROHIBITED. Path Solutions accepts > no responsibility for any errors, omissions, computer viruses and other > defects.] > > P Protect our planet: Do not print this email unless necessary. > > Disclaimer > > [The information contained in this e-mail message and any attached files > are intended solely for the use of the individual or entity to whom they > are addressed. This transmission may contain information that is > confidential, Path Solutions Private, or exempt from disclosure under > applicable law and/or Path Solutions information security policy. The > receiver of this communication shall not transmit any part of this message > unless the email subject clearly classify it as “Public” or a written > permission has been given by the information assets owner. If you have > received this e-mail in error, please notify the sender immediately and > delete all copies, any disclosure, copying, distribution, or use of the > information contained herein is STRICTLY PROHIBITED. Path Solutions accepts > no responsibility for any errors, omissions, computer viruses and other > defects.] > > P Protect our planet: Do not print this email unless necessary. > -- smsadm
