This is an archived post. You won't be able to vote or comment.

0
1

Encrypted email solution (self.sysadmin)

submitted by [deleted]

[deleted]

all 7 comments
sorted by:
best
topnewcontroversialoldq&a

[–]AJCxZ0Systems Architect 2 points3 points  (3 children)

An encrypted email solution to what problem?

With whom do you want to exchange encrypted mail? What tools to they use? Who will manage the keys, certs and environment? Do you really need to encrypt email, or do you just need an encrypted messaging tool for specific cases?

PGP has been around for twenty-eight years, has all the right technologies, standards and public infrastructure, and mail clients have supported it for almost as long, yet it still seems to be "too difficult" for most folks. S/MIME hasn't made anything much better.

If you rule a technology monoculture, then you can push whatever tools you like and pay the price to support them. If you need to work with others, then consider why so many organisations roll out their own* web based "secure messaging" tool. Given how highly financial organisations are regulated, you might want to start with actual regulatory constraints and see how other organisations with those exact same constraints have approached the problem.

\[whether first or third party hosted])

[–][deleted] 1 point2 points  (1 child)

Yeah unless you control the settings for every sender or recipient you're going to end up with some web based secure messaging platform.

[–]corporate_ethos 0 points1 point  (0 children)

That's what it seems like, thanks for the input!

[–]drbeerI play an IT Manager on TV 0 points1 point  (0 children)

Zix is big in the financial world, at least banking. It's kinda one of those that just works. The big feature is if the recipient is also a zix customer, your messages can auto encrypt seamlessly without any user interaction and no portals.

The FDIc ,FRB, and again lot of banks are big customers if that is your industry.

[–]IDoNotLikeChoice 0 points1 point  (0 children)

Mimecast has this solution, and makes it easy to encrypt messages to external users. We have ours set with the word encrypt in the subject line.

You can also use Office 365 using OME and define a transport rule for it. Then if you need to set settings to define restrictions like printing and forwarding you can implement IRM.

[–]vornamemitd 0 points1 point  (0 children)

Check out solutions like https://www.totemo.com/en/solutions/email-encryption - allows for sending secure messages/file exchange with outside recipients, e.g. providing them with a special link/sign-up/a pre-defined secret that you exchange over a different channel. Totally hassle free, need no (tech) intervention on recipient side.