Security in the eMail architecture
27.02.2003 - Presse release
eMail solution combines encryption, content scan and anti virus technology
Hanover, 27.02.03 - The IT service provider netFORMAT has developed a central eMail solution as part of a project in which combines the functionalities encryption, content-scan and virus-scan. With this solution the vendor centres on companies, that want to safeguard their internet eMail traffic to external partner an customers. The support for the mainstream standards PGP and S/MIME enables the automatic de- and encryption with common eMail software. By the integration of the content scan and the anti virus technology the content inspection for viruses and unwanted content can be applied upon the complete eMail traffic.
Opposing the 'classic' approach the de- and encryption is not done on the client desktop PC, instead it is processed completely automatic on the central eMail server. Therefor no modifications to the client systems are necessary and the end user does not have to deal with the complicated encryption matter.
The PGP encryption is currently based on the software product "PGP-eBusiness-Server" and is installed on the separate central server. This is less licence const intensive compared to an integration in the existing infrastructure server. The content scanning and the S/MIME functionality are realised with the product MAILsweeper and it's plug-In "SECRETsweeper". MAILsweeper and PGP-eBusiness-Servers are combined to achieve an automatic detection on the type of incoming encryption.
The solution is windows based and is able to utilize self generated certificates as well as certificates issued by Certification Authorities (CAs). It also can be integrated in PKI systems (PKI - Public Key Infrastructure).
The field of application for this netFORMAT solution is easy to describe: Two key pairs S/MIME and (Open) PGP are generated for the internal end user. The external partner chooses his preferred method, the system automatically detects the method and decrypts the content. For every encryption the key of the recipient is needed. Recipient and sender receive a confirmation each, about the status of (de-) encryption. Outgoing eMails are encrypted after content inspection, incoming eMails are decrypted before.
The de- and encryption in both direction is single layer. Does the email still contain encrypted parts after the process, then it will be rejected at the content inspection, isolated and the recipient/sender will be informed. Just like virus detection are treated. Upon outgoing virus detection, additionally the administrator is informed to isolate the 'in-house' virus. Extensively large eMails will be 'parked' and on some occasions forwarded after regular work time.
Last change: 25.10.2016, Product of Interest: