Posts Tagged ‘ssl’
Monday, April 9th, 2012
The limitations imposed upon hospitals and medical practices in order to meet HIPAA standards often make it easier and more cost-effective to outsource your email to an outside provider such as LuxSci. However, we understand that this can sometimes feel like you’re completely giving up the reins to your email, as it were. LuxSci’s HIPAA Compliant solution safeguards your account to minimize any potential breaches, lapses in security, or other HIPAA violations, but this doesn’t mean that you have no control over your account at all.
Read the rest of this post »
Tags: branded, compliant, hipaa, mobile sync, private labeling, reseller, secure, ssl
Posted in Business Solutions
No comments »
Wednesday, March 7th, 2012
 I recently applied for a new insurance policy with fairly well known insurance agency (who shall remain nameless). When all the preliminaries were done, the representative emailed me copies of the new policies. They were “secure” emails. I was very impressed … they thought enough of my privacy and identity to ensure that sensitive documents would be sent securely. And, working in an email security company, I actually know and appreciate the ramifications of that perhaps more than most.
So, once I finally got around to accessing the message, I discovered that it was really not secure at all! Even though the subject said “secured”, the representative said it was secure, and the PDFs of the policy documents were not physically in the message, it was really completely insecure! My faith in the company is now somewhat tarnished (though they might not even know about the issue) … and I have serious doubts about whatever provider they are using to facilitate these “secure messages”.
How do I know it was insecure?
Read the rest of this post »
Tags: email security, escrow, insecure, secureline, ssl, tls
Posted in LuxSci Library: The Technical Side of Email
No comments »
Wednesday, September 21st, 2011
Update – April, 2012. openssl v1.0.1 is out and it supports TLS v1.1 and v1.2 which help mitigate this attack. All web sites hosted by LuxSci now use this updated software and are safer. LuxSci recommends using a web host which supports TLS v1.1 and v1.2 for secure web connections.
—-
SSL v3 and TLS v1 are subject to a serious exploit, according to a recently published attack mechanism (called BEAST). This sounds foundation-shattering and kind of scary. When people see this, as when we did, the first panicky questions that arise are:
- What is really affected?
- How serious is it?
- What can I do to protect myself?
- How does the BEAST attack actually work?
After researching this issue, we have digested what we have found and produced this article to answer all of these questions for you.
Read the rest of this post »
Tags: beast, breach, compromised, gmail, https, initialization vector, internet explorer, isp, javascript, openssl, opera, ssl, ssl v3.0, tls, tls v1.0, tls v1.1, tls v1.2
Posted in LuxSci Library: Security and Privacy, LuxSci Library: The Technical Side of Email, TechNotes
4 Comments »
Monday, May 9th, 2011
 When sending outbound email from an email program (like Outlook or Thunderbird) or from a mobile device (like iPhone or Blackberry) that is not using Premium MobileSync, your program or device connects to our outbound email servers using an Internet protocol called “SMTP” (The Simple Mail Transport Protocol).
An email server, however, does lots of different things in addition to sending outbound email. It may allow checking of email via POP or IMAP, or checking your address book using LDAP, or other things. So, when your email program connects to the server it has to specify what it wants to do (i.e. send an email). It does this by connecting to a numbered “port” on the server. Port number “25″ is the Internet standard for “regular outbound email”.
However, because port 25 is standard for outbound email, many ISPs, wifi networks, hotels, airports, and other locations that provide Internet access will arbitrarily block any connections to servers (except perhaps their own) on port 25 in order to stop spammers from using their services for the sending of spam, viruses, or malware and to prevent their IP addresses from being black listed.
Read the rest of this post »
Tags: 25, 465, 587, alternate port, anonymization, block, firewall, ip addreess, smtp, smtp port, ssl, tls
Posted in LuxSci Library: Email Programs and Devices, LuxSci Library: The Technical Side of Email, TechNotes
No comments »
Tuesday, July 13th, 2010
 We are often approached by customers wanting to use their blackberry mobile devices to send and receive email that may contain electronic Protected Health Information (ePHI). Such customers, when they must abide by the HIPAA and HITECH laws governing medical privacy, must comply with a long set of regulations that covers, among other things, how ePHI may be transmitted over the Internet.
This article deals with the security of sending and receiving email on a Blackberry configured for Internet email services (i.e. it does not apply to those connecting to an Blackberry Enterprise Server and Exchange).
Read the rest of this post »
Tags: baa, blackberry, business associate agreement, ePHI, hipaa, hitech, privacy, security, ssl
Posted in LuxSci Library: HIPAA, LuxSci Library: The Technical Side of Email
No comments »
Saturday, January 30th, 2010
 LuxSci has implemented a number of enhancements which add to its already stringent security and high reliability of services. These features cover areas such as login security, password resets, SecureLine encryption, Widget backups, and more. The enhancements are listed below, by service.
Read the rest of this post »
Tags: backup, passwords, secure form, secureline, security, ssl, tls, webaides
Posted in New Feature Announcements
No comments »
Wednesday, January 20th, 2010
 On January 30th, 2010, LuxSci will be releasing a set of software updates that add new security features and enhance existing security features. Additionally, LuxSci is introducing a new Business Associate Agreement for HIPAA customers — one that complies with the new HITECH provisions of HIPAA. These changes will impact some existing and future customers, as described in this notice.
Read the rest of this post »
Tags: hipaa, hitech, mysql, security, sftp, ssl
Posted in New Feature Announcements
1 Comment »
Tuesday, January 5th, 2010
 Creating a web site that has “secure” components requires more than slapping together some web pages and adding an SSL Certificate. All a certificate really does is create a thin veneer of security — one that does not go very far to protect whatever sensitive data necessitated security in the first place. In fact, naive attempts at security can ultimately make the data less secure and more likely to be compromised by creating an appetizing target for the unscrupulous.
So, beyond paying big bucks to hire a developer with significant security expertise, what do you do? Start with this article — its purpose is to shed light on many of the most significant factors in secure web site programming/design and what you can do to address them. At a minimum, reading this article will help you to intelligently discuss your web site security with the developers that you ultimately hire.
Read the rest of this post »
Tags: eavesdropping, https, man-in-the-middle, pgp, phishing, s/mime, ssl, ssl certificate, trust, web site security
Posted in AAA Featured Articles, LuxSci Library: Security and Privacy, LuxSci Library: Web Design and Programming
No comments »
Wednesday, December 30th, 2009
Standard SSL Certificates are issued by an Certificate Authority (CA) such as Thawte after the CA performs some basic standard validation on the identity of the certificate request to ensure that the certificate is not issued to “the wrong hands”.
The types of validation performed for standard SSL certificates vary by the type and cost of the certificate, but include:
- A confirmation email message sent to the domain administrator as specified in the domain’s entry in the WHOIS database
- A confirmation email message sent to a standard administrative email address at the domain itself, such as “admin@domain.com”.
- The name of the organization owning the domain name may be validated.
You should purchase SSL Certificates that use the above forms of validation in order to:
Read the rest of this post »
Tags: certificate authority, ev, extended validation, extended validation SSL certificate, ssl, ssl certificate, Thawte
Posted in TechNotes
1 Comment »
Monday, December 28th, 2009
We are often asked by customers why they should pay more for an SSL certificate from LuxSci/Thawte instead of purchasing from a third party provider like Go Daddy. I.e., what justifies the added expense?
There are two key considerations in choosing Thawte SSL from LuxSci:
- The recognition of an SSL certificate from Thawte.
- The benefit of LuxSci managing the order process, installation and subsequent SSL renewals.
Read the rest of this post »
Tags: certificate authority, geotrust, go daddy, godaddy, ssl, ssl certificate, ssl123, Thawte
Posted in LuxSci Library: Security and Privacy
8 Comments »
|
 |
|
Email updates:
