Posts Tagged ‘pgp’
Friday, March 13th, 2009
Section 1: Introduction to Email Security
 You may already know that email is insecure; however, it may surprise you to learn just how insecure it really is. For example, did you know that messages which you thought were deleted years ago may be sitting on servers half-way around the world? Or that your messages can be read and modified in transit, even before they reach their destination? Or even that the username and password that you use to login to your email servers can be stolen and used by hackers?
This article is designed to teach you about how email really works, what the real security issues are, what solutions exist, and how you can avoid security risks.
Information Security and integrity are becoming more important as we use email for personal communication and business. While you are reading this article imagine how security problems can affect your business or personal life…. if they have not already.
Read the rest of this post »
Tags: asymmetric encryption, eavesdropping, email security, false messages, http, identity theft, imap, invasion of privacy, message modification, Message Replay, opportunistic TLS, pgp, pop, repudiation, s/mime, Simple Mail Transport Protocol, smtp, SMTP relaying, smtp server, ssl, ssl certificate, symmetric encryption, tls, Unprotected Backups
Posted in AAA Featured Articles, LuxSci Library: Security and Privacy, TechNotes
14 Comments »
Wednesday, February 18th, 2009
 LuxSci’s Passwords WebAide, which has been extensively updated, makes it quick and easy to securely store all of your numerous passwords in one central location, and to share access to these with other users on a per-password basis, if needed. We’ve just made it very easy to also export your saved encrypted passwords from the Passwords WebAide. Use this feature to make your own backups of password lists, plus get printer friendly lists of those passwords to save in a secure location or to use as a reference when updating passwords.
Read the rest of this post »
Tags: bulk, csv, decryption, export, passwords, pgp, webaides
Posted in New Feature Announcements
No comments »
Tuesday, February 17th, 2009
 LuxSci has re-written its web-based Password management interface from the ground up to provide users with a fast, modern, featureful experience. The WebAides Passwords user interface now matches that of WebMail, Address Books, Calendars, and User Groups in AJAX-based Web 2.0 speed, data caching, and usability.
The Passwords WebAide provides:
- PGP-Encrypted online storage for all of the user names, passwords, and related information that most people have in abundance for logging in to countless web sites and devices. Every entry is separately encrypted using PGP. The PGP certificates are imported by you and/or generated by LuxSci. There is no need for the passwords to these PGP keys to ever be stored on LuxSci’ servers. This is a secure online solution.
- Shared access — you can have detailed control of who in your account, if anyone, can decrypt and access which passwords.
- Associated encrypted notes and attachments with each password so that you can store additional related information.
Consider LuxSci’s WebAide Passwords to be an “Online Lockbox” where you can securely store and share all of your passwords. This Lockbox can be accessed from anywhere that you have Internet access. The major changes that come along with these user interface enhancements include:
Read the rest of this post »
Tags: collaboration, encryption, lockbox, login, online, password, password list, password storage, password vault, pgp, shared, vault, webaides
Posted in New Feature Announcements
2 Comments »
Tuesday, February 17th, 2009
 LuxSci has updated its web-based User Group management interface from the ground up to provide users with a fast, modern, featureful experience. The User Group WebAides user interface now matches that of WebMail, Address Books, Calendars, Tasks, and Passwords in AJAX-based Web 2.0 speed, data caching, and usability.
User Groups WebAides are very useful in a collaborative environment for:
- Sharing WebAides (i.e. calendars, files, etc.) or email folders with groups of users instead of or in addition to individuals.
- Encrypting individual entries (i.e. files or passwords) such that any group member can decrypt the item, as long as they are a member of the group
- Creating email distribution lists so that it is easy to email everyone in the group.
The major changes that come along with these user interface enhancements include:
Read the rest of this post »
Tags: ajax, certificate, collaboration, distribution list, group, pgp, user group, webaides, webmail
Posted in New Feature Announcements
No comments »
Saturday, February 14th, 2009
 We recently discussed email security for accountants and mentioned that the use of password-protected files is not usually a very good solution for meeting data privacy needs. After writing this and getting some feed back, we thought that the issue of password-protected files really deserves some further discussion. Many people are under the assumption that if they use the “password protection” features of whatever software they are using, that their data is safe and secure. However, this is not necessarily the case. Why?
Using password-protected files to secure data is fast and easy and built into many applications. Why not use it? Certainly, password protecting files is much better than not doing so. However, there are several things that determine how secure these “protected” files really are.
Read the rest of this post »
Tags: aes, brute force, dictionary, digital signature, encrypted, excel, insecure, microsoft word, office 2007, one note, password, password protected, password recovery, password-protected files, Password-Protected PDF, password-to-modify, pdf, pgp, powerpoint, s/mime, secureline, ssl, strong encryption, winzip, zip
Posted in LuxSci Library: Security and Privacy, TechNotes
4 Comments »
Thursday, January 29th, 2009
 Doctors and medical professionals are feeling a growing pressure to get their business online (i.e. even use of electronic prescriptions is being pushed). This includes making available protected health information to patients via a web site and collecting similar private information from patients or would-be patients. If doctors can show that they are using digital systems with their health care practices in a meaningful way by 2011, they may be eligible for some serious money (part of the proposed stimulus package — the Health Information Technology for Economic and Clinical Health Act (HITECH)).
However, where the health information of an identifiable individual is involved, the Health Insurance Portability and Accountability Act (HIPAA) is the official compliance document. So, what do these requirements mean and how can HIPAA be followed in the context of a website?
Read the rest of this post »
Tags: backup, disposal, electronic prescription, encrypted, escrow, form, Health Insurance Portability and Accountability Act, hipaa, hipaa-secure, patient, pgp, privacy agreement, protected health information, s/mime, secure ftp, secureline, ssl, web form, web site
Posted in Business Solutions, LuxSci Library: HIPAA
2 Comments »
Saturday, January 24th, 2009
 LuxSci has re-written its web-based document management interface from the ground up to provide users with a fast, modern, featureful experience. The WebAides Documents’ user interface now matches that of WebMail, Address Books, Calendars, and Tasks. Additionally, some new components have been added to make it very easy to upload and download large numbers of files to the Documents WebAides.
Read the rest of this post »
Tags: ajax, chrome, document, encrypted storage, encryption, file, file encryption, files, firefox, internet explorer, java, opera, pgp, safari, webaides, xpress
Posted in New Feature Announcements
1 Comment »
Tuesday, January 20th, 2009
Updated 12/7/2011 with AES security data for the newest browsers and mobile devices.
SSL and TLS are the workhorses that provide the majority of security in the transmission of data over the Internet today. However, most people do not know that the degree of security and privacy inherent in a “secure” connection of this sort can vary from “almost none” to “really really good … good enough for US government TOP SECRET data”. The piece which varies and thus provides the variable level of security is the “cipher” or “encryption technique”. There are a large number of different ciphers — some are very fast and very insecure. Some are slower and very secure. Some weak ones (export-grade ciphers) are around from the days when the USA did not permit the export of decent security to other countries.
AES, the Advanced Encryption Standard, is a relatively new encryption technique/cipher that is the successor of DES. AES was standardized in 2001 after a 5 year review, and is currently one of the most popular algorithms used in symmetric key cryptography (which, for example, is used for the actual data transmission in SSL and TLS). It is also the “gold standard” encryption technique; many security-conscious organizations actually require that their employees use AES-256 (256-bit AES) for all communications.
This article discusses AES, its role in SSL, which web browsers and email programs support it, how you can make sure that you only use 256-bit AES encryption of all secure communications, and more.
Read the rest of this post »
Tags: 128-bit rc4, 256-bit AES, aes, apache, chrome, cipher, encryption technique, fips, firefox, gpg, internet explorer, iphone, mail.app, opera, outlook, pgp, safari, secret, side channel attack, ssl, symmetric encryption, thunderbird, tls
Posted in LuxSci Library: Security and Privacy, TechNotes
16 Comments »
Friday, December 5th, 2008
As an email hosting service, we at LuxSci are frequently asked about email clients. We would like to share with you of our expertise and opinions about the most popular email clients. We’ve created a quick guide to email programs that includes an explanation of the client, its major features, and what makes it stand out.
Read the rest of this post »
Tags: aes, alpine, encryption, enigmail, entourage, eudora, imap, imap keywords, kmail, mac, mail.app, microsoft outlook, Outlook Express, pgp, pim, pine, pop, s/mime, smtp, tags, thunderbird, vista, windows live mail, windows mail
Posted in LuxSci Library: Email Programs and Devices, TechNotes
6 Comments »
Monday, November 3rd, 2008
LuxSci has had many requests from clients who have to communicate with various banks and other security-conscious organizations asking that LuxSci “enforce the encryption of email when sent to those organizations’ email servers via TLS”. This is such a common request, that I wanted to explain what it means, why it is good, how LuxSci does this by default, and the extra step that LuxSci can take to lock down things even more for you.
Read the rest of this post »
Tags: encryption, pgp, s/mime, secure email, secureline, security, smtp, ssl, tls
Posted in Business Solutions, LuxSci Library: Security and Privacy
7 Comments »
|
 |
|
Email updates:
