Data Loss Prevention (DLP) describes a plan for companies to control the sending of sensitive data. E.g. this can include controls to stop the flow of sensitive data or to ensure that sensitive data is always well-encrypted (for compliance) when sent. In the context of email, DLP is usually achieved through the following formula: Construct a […]
We have long held that leaving it to each sender/employee to properly enable encryption for each sensitive message (a.k.a “Opt In Encryption”) is too risky. Why? Any mistake or oversight immediately equals a breach and liability. Instead, LuxSci has always promoted use of “Opt Out Encryption,” in which the account default is to encrypt everything unless […]
In previous posts we have examined how hackers and spammers can send forged email and how it can be extremely difficult to differentiate these messages from legitimate messages. We have looked at the various common techniques for anti-fraud such as SPF, DKIM, and DMARC and seen that, while these technologies can help a lot, they all have limitations; they all […]
Email and other data are either being “transmitted” or “processed” or are “at rest.” I.e., it is moving from one computer to another, stored/at rest on a computer, or preparing to be transmitted or stored. While most types of compliance regulation, such as HIPAA, specifically require that data be transmitted securely, not all regulations require […]
LuxSci has had many requests from clients who have to communicate with various bank and other security-conscious organizations that LuxSci “enforce the encryption of email when sent to those organizations email servers via TLS”. This is such a common request, that I wanted to explain what it means, why it is good, how LuxSci does this by default, and the extra step LuxSci can take to lock down things even more for you.
