FacebookFind us on Facebook

Content Security     Encryption     Academy     Support

Search

Key benefits

Security

  • Protects valuable corporate information and personal data within eMails
  • Level of encryption, applied on eMails, even meets strict legal obligations
  • Safeguards eMail communication against manipulation or falsification during transmission
  • Enables you to really apply all security policies including content-scan, virus-scan and anti-spam even on encrypted eMails
  • Complete eMail encryption (Message body and attachments)
  • Best choice security solution for MIMEsweeper infrastructures
  • Top level security and performance architecture based on the unique MIMEsweeper-Integration

Features

  • Individual and flexible encryption policies available
  • Ability to enforce encryption and signing methods by individual MIMEsweeper policies
  • User controlled activation of various protective measures (End user can influence functions with easy to use keywords)
  • Support for S/MIME and OpenPGP
  • Spontaneous ??Ad Hoc Encryption?? for recipients that have no encryption technology available
  • Utilizes accredited and validated security algorithm based on GnuPG and OpenSSL
  • Support for user-, group-, domain- and company keys
  • Onboard certification authority (CA) with support for a local CRL (Certificate Revocation List)
  • On-demand generation of keys and certificates
  • Site-to-Site encryption (Secures the complete traffic between two eMail/SMTP domains)
  • Automatic verification of digital signatures from unknown keys through trustworthy issuer (CA)

MIMEsweeper Integration & deployment

  • Simple installation and a quick start into operation is provided by the direct integration into the MIMEsweeper content security solution using top level technology
  • No investment in hardware and maintenance for a stand alone gateway required
  • Concerted integration into the existing eMail infrastructure (No modification on the eMail routing or the fail-over concept)
  • Completely independent from the internal groupware like Lotus Notes, Microsoft Exchange or GroupWise
  • Scalable from a single site system to geographically distributed implementations in a MIMEsweeper cluster
  • Server-based and thereby transparent to the end user
  • An extensive selection of encryption scenarios, added to the MIMEsweeper, enable a flexible adoption of encryption policies
  • Best acceptance from the end user ?? no additional training required

Administration

  • Centralized management and key handling even in distributed environments
  • Secure and yet intuitive administration via a web based interface (HTTPS)
  • Keyserver functionality (automatic key exchange) for S/MIME and OpenPGP with MIKE (Mail Initiated Key Exchange)
  • Import of existing keys and certificates
  • Automatic scheduled backup and restore function for the configuration, keys and certificates
  • Detailed statistics and graphical traffic reports are available through the MIMEsweeper reporting
  • Minimised administrative effort by automation of key generation, key exchange, update of local CRL and system backup

Standards & Formats

  • SMTP, HTTP(S)
  • S/MIME (RFC 2633),
    OpenPGP (RFC 2015/3156)
  • X.509, PEM, DER, KEY, PKCS#7, PKCS#12
  • OpenPGP-Keys, PGP/MIME, PGP/Inline
  • Asymmetric encryption: RSA, RSA-E, RSA-S, ELG, ELG-E, DSA
  • Symmetric encryption: DES, 3-DES, CAST5, AES (128/192/256), RC2, RC5, BLOWFISH, TWOFISH
  • Hash: MD5, SHA-1, SHA-256, RIPEMD-160

Generation keys

  • 1024 Bit ?? 4096 Bit (OpenPGP and S/MIME)

Importing keys

  • 168 Bit ?? 4096 Bit (OpenPGP and S/MIME)
  • OpenPGP: Any file extension (ASCII- or binary encoded)
  • S/MIME: X.509 v3 Any file extension (DER- or PEM encoded)
  • Private or public keys/certificates, as well as CA certificates or self signed keys

S/MIME - Additional features

  • Option to select between ??opaque??- and ??detached?? signing on all signing jobs
  • S/MIME-Attachments without declaration in the SMTP-data section (MIME header: unspecific ??Content-Type??)
  • Support for different certificates for signing and encryption
  • Support for S/MIME v3 extension (i.e. usage restrictions)
  • Preinstalled root certificates from well known CA??s in a local certificate store

PGP - Additional features

  • Personal or company signature only on body text
  • Only encryption of attachments
  • Automatic decryption of single (manually) encrypted PGP-file attachments (Binary or ASCII encoded, *.PGP *.GPG *.ASC)

Ad Hoc Encryption - Additional features

  • Passphrase based protection method without certificate or key exchange
  • Symmetric encryption using AES-128 CBC cipher
  • Automatically generated or manual password
  • Encryption of all email parts

Performance

The extreme processing speed of this solution, decryption and encryption alike, will even meet the requirements of heavy duty environments.

Each gateway will be able to process eMail data up to 5 Gigabyte per hour.

MIMEsweeper content security

MIMEsweeper content security

Test parameter/environment:
  • Hardware: CPU 2,7GHz, 1 GB RAM
  • Key length: 2048 Bit
    (de- and encryption)
  • Sym. algorithm: AES-128 (PGP),
    3-DES (S/MIME)


System requirements

Requirements for MIMEsweeper for SMTP and CompanyCRYPT.

Software:
  • Windows 2000 Server, Windows Server 2003 Standard or Enterprise
  • MIMEsweeper for SMTP 5.x

Hardware:
  • Pentium III or better
  • at least 1 GB RAM
  • 20 GB free harddisk space




Infocenter
Last change: 25.10.2016, Product of Interest: