Yes. Opportunistic TLS is enabled. But, unfortunately that is not what the mgmt. requires.
Regards Mathew From: [email protected] [mailto:[email protected]] On Behalf Of Adm Sent: Sunday, June 19, 2016 7:55 PM To: [email protected] Subject: Re: [Exchange] email digital encryption Is opportunistic TLS set up in your email servers? Could that be what your mgmt is requesting? On Sunday, June 19, 2016, Liby Philip Mathew <mailto:[email protected]> wrote: Thanks for the information. I too haven’t seen much encrypted mails that are coming to our mail servers. This was requested for external mails. I will be better off without encryption if not insisted by the management. Thanks & Regards Mathew From: javascript:; [mailto:javascript:;] On Behalf Of Michael B. Smith Sent: Thursday, June 16, 2016 7:13 PM To: javascript:; Subject: RE: [Exchange] email digital encryption Is the need from the OP internal email only? Then you can do it for free, using S/MIME along with AD Certificate Services. Outlook and Ootw (OWA) both have built-in support for this. It’s trivial to implement, maintain, and support (once you have the required CA infrastructure in place). If you need external email support, then you are far better off going third party. Mr. Pace gave you one option below, another is ZixMail. With ZixMail you can use their cloud service or you can put an appliance on-premises. The challenge with encryption (and this has been true since the very first support for email encryption) is key exchange. That is, how do you get the public keys to the required parties to decrypt your email, and how do you attest properly that a key is *you* and not someone else? It’s complicated and it doesn’t scale well if you have external recipients. In terms of “how many”.. I would say 100% in health care and financial services. Outside of those two arenas, it is uncommon (in my experience). From: mailto:javascript:; [mailto:javascript:;] On Behalf Of Mike Pace Sent: Thursday, June 16, 2016 11:46 AM To: mailto:javascript:; Subject: Re: [Exchange] email digital encryption We encrypt some emails using http://virtru.com. This is in conjunction with a recent move to Google for Work (gasp from Exchange crowd). Sender has to put [secure] in the subject line and reciever has to login to virtru's site to retrieve. Pretty simple. Per user/per year pricing. What you're looking for may be on a much larger scale. We are currently only using this for Attorneys and Health Department. Mike Pace Davis County Information Systems 61 South Main Street Suite 201 Farmington UT 84025 (801)451-3437 On Thu, Jun 16, 2016 at 1:38 AM, Liby Philip Mathew <mailto:javascript:;> wrote: Hi, I have been asked by my manager to study on implementing digital encryption. I have few doubts. 1 Roughly what percentage of organizations use digital encryption? 2 Do I need to have additional h/w resources? 3 Is it worth implementing digital encryption? 4 what are known pros & cons? 5 How easy is it to implement & maintain? 6 What would be the approximate cost for each certificate? 7 Is the cost recurring? 8 Any other related valuable information TIA Mathew Disclaimer [The information contained in this e-mail message and any attached files are intended solely for the use of the individual or entity to whom they are addressed. This transmission may contain information that is confidential, Path Solutions Private, or exempt from disclosure under applicable law and/or Path Solutions information security policy. The receiver of this communication shall not transmit any part of this message unless the email subject clearly classify it as “Public” or a written permission has been given by the information assets owner. If you have received this e-mail in error, please notify the sender immediately and delete all copies, any disclosure, copying, distribution, or use of the information contained herein is STRICTLY PROHIBITED. Path Solutions accepts no responsibility for any errors, omissions, computer viruses and other defects.] P Protect our planet: Do not print this email unless necessary. Disclaimer [The information contained in this e-mail message and any attached files are intended solely for the use of the individual or entity to whom they are addressed. This transmission may contain information that is confidential, Path Solutions Private, or exempt from disclosure under applicable law and/or Path Solutions information security policy. The receiver of this communication shall not transmit any part of this message unless the email subject clearly classify it as “Public” or a written permission has been given by the information assets owner. If you have received this e-mail in error, please notify the sender immediately and delete all copies, any disclosure, copying, distribution, or use of the information contained herein is STRICTLY PROHIBITED. Path Solutions accepts no responsibility for any errors, omissions, computer viruses and other defects.] P Protect our planet: Do not print this email unless necessary. -- smsadm Disclaimer [The information contained in this e-mail message and any attached files are intended solely for the use of the individual or entity to whom they are addressed. This transmission may contain information that is confidential, Path Solutions Private, or exempt from disclosure under applicable law and/or Path Solutions information security policy. The receiver of this communication shall not transmit any part of this message unless the email subject clearly classify it as “Public” or a written permission has been given by the information assets owner. If you have received this e-mail in error, please notify the sender immediately and delete all copies, any disclosure, copying, distribution, or use of the information contained herein is STRICTLY PROHIBITED. Path Solutions accepts no responsibility for any errors, omissions, computer viruses and other defects.] P Protect our planet: Do not print this email unless necessary.
