On Wed, 2003-07-23 at 01:05, Ronish Mehta wrote: > Hi there, > I'm looking for a solution to encrypt my mails and to > ensure that they have not been tampered with. > > VeriSign offers such a solution through its Go Secure > solution > > I'm looking for solution that are easy to deploy from > clients perspective > > (a) Anyone already using GOSecure, and any comments > about it (if this is allowed on the list..) > > (b) Any other products that you are using out there > (commercial or freeware) > > (c) Any security flaws in using solutions for mail > encyption > > Thanks > > P.S. I;m using Exchange server 5.5 currently, will > migrate to Exchange 2000 soon...
It depends what your requirements are. Must the solution be at the client level (which ensures end-to-end encryption, but can be a nightmare to support) or is your requirement to encrypted messages across the Internet cloud (in which case a gateway encryption solution would work)? For clients, PGP/GPG is pretty much the standard. If gateway-to-gateway encryption will satisfy your requirements, there are several vendors out there who offer gateway solutions. They would be a lot less work to setup and support. CipherTrust (www.ciphertrust.com) offers a secure gateway solutions that does S/MIME, PGP, and TLS for gateway to gateway encryption. It also has a https staging server to hold e-mail which couldn't be sent securely, so the recipient can log in and view the e-mail over an encrypted connection. Several other vendors have functionally similar products. -- Brian Keefer --------------------------------------------------------------------------- ----------------------------------------------------------------------------
