LuxSciLuxSci
Secure Email,
Web and Form Solutions
Phone: 800-441-6612
sales@luxsci.com
support@luxsci.com

Security: A Year in Review: 2012

Over the last 12 months, LuxSci has added many new features, enhanced services, and improved usability.  We have also made a large numbers of security and privacy improvements.

Some of the most conspicuous of these include changes to User Account Access, HIPAA Security, SecureForm, Backups, Restores, Email Security, Credit Card Security,  Auditing, Security of Support Access to Data, Web Hosting, and Firewalls.

User Account Access
  • Configurable emailed alerts of failed logins to IMAP, POP, SMTP, WebMail, FTP, SFTP, SSH, and SCP services.  Be informed quickly if there are any unapproved failed login attempts.
  • Configurable emailed alerts of successful logins to IMAP, POP, SMTP, WebMail, FTP, SFTP, SSH, and SCP services.  Be informed quickly if there are any successful logins – to be sure that they are authorized.
  • The list of recommended user Security Questions has been revised to include only questions whose answers are not easily found online or by being a close friend or family member.
  • All users of the LuxSci Web Interface are required to add a security question and answer to their account for identity verification purposes.
  • Two-Factor authenticated access to the Web Interface via DuoSecurity is now supported at no additional charge.
  • Administrators can enable policies requiring users to change their passwords as specified frequencies (e.g. every 90 or 180 days) and can ensure that old passwords are not reused.
  • Administrators can customize the lockout of the Web Interface in response to password guessing attempts.  E.g. how many failures results in a lockout of how long?

HIPAA

  • LuxSci now supports “per-domain” HIPAA accounts.  These have a “good” level of enforced security for all users and a further locked down “HIPAA-Compliant” level for selected domains.  This makes it possible to manage secure and insecure email in the same account.

SecureForm

  • SecureForm form data collection and processing service now supports automatic delivery of files and data posted from your forms to your own servers via Secure FTP (SFTP).

Backups and Restores

  • Administrators can now make backups of their MySQL databases “on demand” and can restore databases from backups when needed, through our Web Interface.

Email Security

  • All new S/MIME certificates use 2048-bit keys (instead of 1024-bit keys).
  • Users can force the use of SecureLine Escrow over TLS for added security or access auditing as needed.
  • LuxSci Supports DKIM for inbound and outbound email to detect and prevent email forgeries and to help mitigate spam.

Credit Card Security and Privacy

  • LuxSci’s processing of credit card data remains PCI-compliant. Credit card data is never stored on or transmitted through any of LuxSci’s servers.  It is also not accessible to LuxSci staff or present in any of LuxSci’s backups. Customer credit card data is safe from even a complete system compromise.

LuxSci Support Staff

  • LuxSci Support staff have to change their passwords every 90 days and cannot reuse old passwords
  • LuxSci staff must use 2-factor authentication for performing any Support activities on any Customer account or to gain any kind of administrative access to a server.
  • All 2-factor access is logged and this logging happens at a separate facility that Support staff does not have access to, and where the logs cannot be tampered with.

Web Hosting

  • Shared web hosting servers now have improved denial of service protection via mod_evasive.
  • Secure FTP support is improved and possible access to SSH service is much more limited.

Premium Server Firewalls

Mobile Sync

  • LuxSci’s Mobile Sync service now supports enforced use of PIN codes and device encryption.  This is available via Private Labeled Mobile Sync now, and will be available in general soon.

There were many, many more security and privacy improvements made as well — some too minor or technical to mention here, some too “behind the scenes”, and some too sensitive to discuss publically.

You can expect 2012 to have many additional improvements.

Leave a Comment

You must be logged in to post a comment.

TRUSTe EU Safe Harbor Thawte Extended Validation SSL Certificate McAfee Secure Authorize.net Merchant
• Access Anywhere
• Fast and Robust
• Super Secure
• Tons of Features
• Customizable
• Mobile Friendly

Send and receive email from your favorite programs, including:

 Microsoft Outlook
 Mozilla Thunderbird
 Apple Mail
 Windows Mail

... Virtually any program that supports POP, IMAP, or SMTP

Keep your email, contacts, and calendars in sync:

 Apple iPhone and iPad
 Android Devices
 BlackBerry
 Windows Phone

... Any device with Exchange ActiveSync (EAS) support

Relay your server's mail through LuxSci via smarthost:

• Resolve issues with ISP sending limits and restrictions
• Improve deliverability with better IP reputation and IP masking
• Take advantage of Email Archival and HIPAA Compliance
• Even setup smarthosting from Google Apps!

Free web site hosting with any email account:

• Start with up to 10 web sites and MySQL databases
• DNS services for one domain included
• Tons of features and fully HIPAA capable

LuxSci's focus on security and privacy:

• Read The Case for Email Security
• Read Mitigating Security & Privacy Threats
• Review our Privacy Policy

The most accurate, flexible, and trusted filters in the business:

• Premium protection with Intel Security Saas
• Realtime virus database guards against the latest threats
• Seven-day quarantine lets you put eyes on every filtered email
• Supplement with our Basic Spam Filter for even more features

End-to-end secure email encryption — to anyone, from anyone:

• No setup required — encryption is automatic and easy to use
• Secure outbound email with TLS, PGP, S/MIME, or Escrow
• Free inbound encryption via our SecureSend portal
• Independent of your recipient's level of email security
• Widely compatible and fully HIPAA Compliant

Add an extra layer of security with an SSL Certificate:

• Secure your web site
• Debrand LuxSci WebMail with your own secure domain
• Access secure email services via your own secure domain

Encrypt your service traffic via secure tunnel:

• Add another layer of security to your SSL connections
• WebMail, POP, IMAP, SMTP, web/database access
• SecureForm posts, SecureLine Escrow, SecureSend access
• Restrict your account to VPN access only

Secure long-term message archival:

• Immutable, tamperproof email retention with audit trails
• No system requirements — minimal setup, even less upkeep
• Realtime archival of all inbound and outbound messages
• Works anywhere — even with non-LuxSci email hosting

Free data backups included with all email hosting accounts:

• Automatic backups of all email, WebAides, web/database data
• Seven daily backups and up to four weekly backups
• Unlimited restores included at no additional cost
• Custom backup schedules for dedicated servers

Automate your email management:

• Save messages to specific folders or to LuxSci WebAides
• Advanced text scanning with regular expressions
• Tag messages, alter subject lines, or add custom headers
• Filter by message charset, type, TLS status, DKIM status
• Chain filters together for even more complex actions

• Bulk add and edit users, aliases and more
• Control sharing and access globally or on a granular level
• Delegate user roles through permissions
• Configure account-wide taglines, sending restrictions, and more
• Remotely administer account via SOAP API

Share, collaborate, organize, synchronize:

• Calendars, Contacts, Documents, Notes, Widgets, Workspaces
• Fine-grained access control and security
• Access anywhere via secure web portal or smartphone
• Save over solutions like Microsoft Exchange

Free folder sharing for all email hosting accounts:

• Share mail folders with other users in your account
• Subscribe to only the folders you want to see
• Set read-only or read-write access control
• View all personal and shared folders via unified web interface

Color code and label your email messages:

• Define and assign multiple IMAP keywords to each message
• Filter, search, and sort by tags
• Compatible and synchronizes with any IMAP email client
• Also usable with WebAide entries