Posts Tagged ‘security’
Friday, February 6th, 2009
 LuxSci recently had the opportunity to speak with Nate Fitzgerald, Product Manager of Message Archiving at MX Logic. Nate has been with MX Logic for over 4 years and is responsible for their successful archival service. His insight has been invaluable in helping LuxSci get up to speed with all of the technical nuances of this service. We would like to share with you his knowledge and thoughts regarding the security, reliability, and utility of LuxSci’s Premium Email Archival service.
Read the rest of this post »
Tags: archival, auditable, compliance, contentfast, dual commit, email filtering, encrypted, google, hipaa, message archiving, mx logic, nate fitzgerald, postini, premium, redundant, sec, sec 17a-4, secure email, security, serialization, tamperproof, unlimited storage
Posted in AAA Featured Articles, LuxSci Insider, LuxSci Library: Insider Insight
No comments »
Tuesday, February 3rd, 2009
 Frequently, we are asked to verify if an email that someone sent or received was encrypted using SMTP TLS while being transmitted over the Internet. For example, banks, health care organizations under HIPAA, and other security-aware institutions have a requirement that email be secured at least by TLS encryption from sender to recipient. This can and should be locked down to ensure that the email message content cannot be eavesdropped upon. This check, to see if a message was sent securely, is fairly easy to do by looking the the raw headers of the email message in question. However, it requires some knowledge and experience. It is actually easier to tell if a recipient’s server supports TLS than to tell if a particular message was securely transmitted.
To see how to analyze a message for its transmission security, we will look at an example email message sent from Gmail to LuxSci, and see that Gmail does not use TLS when sending messages, even when it can. This indicates that Gmail is probably not a service to be used when you have any kind of encryption requirements.
Read the rest of this post »
Tags: bank, gmail, google, headers, hipaa, mx logic, private, received, secure, security, smtp, ssl, tls, transmission
Posted in LuxSci Library: Security and Privacy, TechNotes
3 Comments »
Saturday, January 31st, 2009
 LuxSci has allowed use of OpenIDs provided by third parties for access to user accounts since December. Proper use of OpenIDs can make logging into sites such as LuxSci both faster and more secure.
Now, LuxSci is also an OpenID Provider. This means that you can create an OpenID based on your existing LuxSci account that can be used as a single sign on to any other web site that supports OpenID.
Read the rest of this post »
Tags: affiliate, cookie, openid, openid provider, password, privacy, provider, reports, secue OpenIDs, security, single sign on, webmail password
Posted in New Feature Announcements
No comments »
Monday, January 26th, 2009
 LuxSci has added plug-ins to its WebMail application in version 10.10 of LuxSci’s software which includes two JAVA applets. So, were we hesitant to add JAVA applets, FLASH, ActiveX, and other plugins in the first place? And why the sudden change of heart? What does this mean for our customers who are concerned about security or who do not want or cannot use JAVA applets?
Read the rest of this post »
Tags: activex, bulk, cascading style sheets, chrome, cookies, css, file, firefox, flash, html, internet explorer, java, java applet, javascript, mobile, opera, privacy, safari, security, webaides, webmail, xpress
Posted in LuxSci Insider
1 Comment »
Thursday, January 22nd, 2009
.jpg) As you may have heard, Barack Obama is tethered to his Blackberry. It’s great to have a highly technical President of the United States, but it is really shaking things up. All of the policies and procedures date back to times before PDAs and smart phones. Obama is really struggling to cling to the same technical edge in his day-to-day affairs that he has enjoyed to date. But the security team at the Oval Office has other plans.
No Blackberry for Obama!
Instead, he gets what is being dubbed the “BarackBerry” — a high security blackberry replacement. Why is the Blackberry (and similar devices) such a security concern?
Read the rest of this post »
Tags: barack obama, barackberry, bes, blackberry, blackberry enterprise server, gps, iphone, nsa, presidential records act, secret service, Sectra Edge, security, top secret, white house
Posted in LuxSci Library: Email Programs and Devices, TechNotes
2 Comments »
Wednesday, December 24th, 2008
Now that LuxSci supports OpenID as an option for logging into WebMail, it raises the questions: “Just how secure is OpenID?” and “Does this new technology allow for more secure logins?” In short, the security of OpenID can vary from very poor to extremely iron-clad. OpenID does allow you to make your logins to WebMail “bullet-proof”, if you set things up appropriately.
Read the rest of this post »
Tags: biometrics, fob, openid, openid providers, personal identity portal, rsa, rsa securid, rsa token, security, security token, single sign on, smart card, ssl, strong authentication, trustbearer, usb token, webmail
Posted in LuxSci Library: Security and Privacy, TechNotes
6 Comments »
Saturday, November 15th, 2008
The short answer is “no” … unless you need to support web browsers 8+ years old on computers that cannot be patched or upgraded and which are not in the USA or Canada.
Read the rest of this post »
Tags: cipher, export, export grade, pci, security, ssl, tls
Posted in LuxSci Library: Security and Privacy, TechNotes
2 Comments »
Monday, November 10th, 2008
SSL versus TLS
TLS (Transport Layer Security) and SSL (Secure Sockets Layer) are protocols that provide data encryption and authentication between applications in scenarios where that data is being sent across an insecure network, such as checking your email (How does the Secure Socket Layer work?). The terms SSL and TLS are often used interchangeably or in conjunction with each other (TLS/SSL), but one is in fact the predecessor of the other — SSL 3.0 served as the basis for TLS 1.0 which, as a result, is sometimes referred to as SSL 3.1. With this said though, is there actually a difference between the two?
Read the rest of this post »
Tags: email security, secure email, secure socket layer, security, ssl, ssl vs tls, tls, tls vs ssl, transport layer
Posted in LuxSci Library: Security and Privacy, TechNotes
9 Comments »
Monday, November 3rd, 2008
LuxSci has had many requests from clients who have to communicate with various banks and other security-conscious organizations asking that LuxSci “enforce the encryption of email when sent to those organizations’ email servers via TLS”. This is such a common request, that I wanted to explain what it means, why it is good, how LuxSci does this by default, and the extra step that LuxSci can take to lock down things even more for you.
Read the rest of this post »
Tags: encryption, pgp, s/mime, secure email, secureline, security, smtp, ssl, tls
Posted in Business Solutions, LuxSci Library: Security and Privacy
7 Comments »
Saturday, August 30th, 2008
LuxSci now provides account administrators with a "Maximum Security" button that allows them, in one click, to configure all of the options in their account to settings that ensure maximal security. This configures such things as forced use of SSL, strong passwords, and forced use of SecureLine (if you have purchased it) with S/MIME certificates. This option is available in the "Advanced Account Administration" area.
Account managers can also contact support to have these settings "Locked Down" so that no one in the account can alter them without contacting support directly, getting approval, and leaving an audit trail.
If you want maximal email security and the assurance that it is setup correctly and cannot be circumvented, this is for you.
Tags: security
Posted in New Feature Announcements
No comments »
|
 |
|
Email updates:
