" s/mime Archives - Page 3 of 4 - LuxSci

Posts Tagged ‘s/mime’

Did You Know? S/MIME is like SSL for Email Encryption

Tuesday, March 24th, 2015

S/MIME is a popular technology for end-to-end email encryption and is analogous to PGP in the way that it works.  It is commonly available in most modern email programs and in many server-side email and WebMail encryption services like LuxSci SecureLine.

Folks are used to thinking about Internet security and encryption in terms of web site security. E.g. the “https://” that secures our everyday life working in our web browsers is the signal that SSL/TLS is being used to encrypt traffic between ourselves and the web server.  People are even becoming used to the fact that TLS (with SMTP) is also commonly used to secure the transport of email messages from server-to-server.

These are all good things!

S/MIME (like PGP) is different — it encrypts the email message before it is sent and the message stays encrypted until the recipient opens it.  It “doesn’t matter” how this message is transported to the recipient … its secure the whole way.[1]  But did you know that S/MIME is really just an application of the same SSL/TLS technology that secures your traffic to securing your messages?

[1] S/MIME (and PGP) do not secure your message headers (e.g. the subject, recipients, etc.), it only secures the message body and attachments.  So, the added security of SMTP over TLS does serve to protect those things that S/MIME does not protect.

Read the rest of this post »

Tags: openssl, s/mime, ssl, tls
Posted in LuxSci Library: The Technical Side of Email
No comments »

Stopping Forged Email 4: Your Last Resorts

Wednesday, March 4th, 2015

In previous posts we have examined how hackers and spammers can send forged email and how it can be extremely difficult to differentiate these messages from legitimate messages.  We have looked at the various common techniques for anti-fraud such as SPFDKIM, and DMARC and seen that, while these technologies can help a lot, they all have limitations; they all require strict and proper setup by the owner of the purported sender’s domain, and they must be well supported by your own spam filtering system.

Yet even with these technologies, it’s not hard in many cases for a determined attacker to send you a forged, fraudulent email message that still looks and feels legitimate.

What else can you do to validate email messages and protect yourself from phishing or social engineering attacks?

Read the rest of this post »

Tags: digital signatures, pgp, s/mime, security, smtp tls, tls
Posted in LuxSci Library: The Technical Side of Email
No comments »

Ensuring all data is encrypted at rest with LuxSci

Friday, May 10th, 2013

Email and other data are either being “transmitted” or “processed” or are “at rest.” I.e., it is moving from one computer to another, stored/at rest on a computer, or preparing to be transmitted or stored.

While most types of compliance regulation, such as HIPAA, specifically require that data be transmitted securely, not all regulations require that data be stored in an encrypted form while at rest. I.e., HIPAA does not require at-rest encryption, though it is recommended to decrease risk and potential liability in some situations.

Having your email and other data encrypted while at rest can potentially increase the security of that data, even if that level of security is not explicitly required. As a result, many LuxSci customers have asked how to ensure that all of their email and other data are encrypted while at rest.

Read the rest of this post »

Tags: at rest, cache, decrypt, encrypt, encryption, hipaa, pgp, s/mime, secureform, secureline, security, sent mail, smtp, tls, transmission, webmail
Posted in HIPAA Compliant Forms, LuxSci Library: HIPAA, LuxSci Library: The Technical Side of Email
No comments »

Encrypting Sent Email — An Often Overlooked Part of End-to-End Encryption

Wednesday, September 26th, 2012

You are proactive and security conscious.  You use end-to-end encryption software, like PGP or S/MIME or LuxSci SecureLine, to send your sensitive messages to their destinations, ensuring that the message content is encrypted the entire way … because otherwise, email is just plain insecure.

Oh – but what about the copies of these messages saved to your “Sent Email” folders?  Are they encrypted or secure?  Should they be?

Read the rest of this post »

Tags: backups, certificate, draft, encryption, escrow, hard drive, insecure, pgp, s/mime, secureline, sent email
Posted in LuxSci Library: HIPAA, LuxSci Library: Security and Privacy
No comments »

Can You Make Your Email More Secure?

Wednesday, August 26th, 2009

LuxSci offers many options for email security. Whether it is PGP, S/MIME, LuxSci’s SecureLine end-to-end email encryption, or forced secure logins over SSL, LuxSci can guide you in making the best choices for secure and safe email.

End-to-end email encryption is one way to ensure that your email can only be read by the intended recipients. SSL and TLS connections are secure, but only to a point. While you can ensure that your users connect securely to LuxSci’s servers, who is to say that your recipient’s connection is secure? With LuxSci SecureLine, even if the recipient’s connection isn’t secure, you can be assured that your message is sent securely and can only be read by whom you intended.

Read the rest of this post »

Tags: end-to-end email encryption, escrow, pgp, s/mime, safe email, secure, secureline
Posted in Business Solutions
No comments »

« Older Entries
Newer Entries »