Upload File

how to secure your emails for sensitive docs

  • Home
  • Travel
  • How to secure your emails for sensitive docs
27
Why You Shouldn’t Email Your Sensitive Documents David Strom [email protected] TechNet Mid America July 2012

Upload: david-strom

Post on 18-Nov-2014

789 views

Category:

Travel


0 download

Report

DESCRIPTION

This was a presentation that I gave at Technet MidAmerica conference in St. Louis in July 2012

TRANSCRIPT

Page 1: How to secure your emails for sensitive docs

Why You Shouldn’t Email Your Sensitive Documents

David [email protected]

TechNet Mid America July 2012

mailto:[email protected]
Page 2: How to secure your emails for sensitive docs

Email docs to yourself

Page 3: How to secure your emails for sensitive docs

Email is inherently insecure…

Page 4: How to secure your emails for sensitive docs

4

Obstacles to Email Encryption Adoption Today

• Unencrypted emails are too easy to send• IT admins think encryption is too expensive or

cumbersome or complex• Compliance regs should drive more email

encryption usage (but don’t…)• The mobile encryption experience hasn’t been

so wonderful

Page 5: How to secure your emails for sensitive docs

Investors’ Email Compromises Have Consequences!

5

Page 6: How to secure your emails for sensitive docs
Page 7: How to secure your emails for sensitive docs
Page 8: How to secure your emails for sensitive docs

Secure email alternatives

• Cloud-based storage• Secure document delivery services • Data loss prevention products• Full encryption choices

Page 9: How to secure your emails for sensitive docs

File sending services

Page 10: How to secure your emails for sensitive docs
Page 11: How to secure your emails for sensitive docs
Page 12: How to secure your emails for sensitive docs
Page 13: How to secure your emails for sensitive docs
Page 14: How to secure your emails for sensitive docs

YouSendIt Privacy Policy

Certain information may become accessible, such as the text and subject of messages you have sent, the name and content of the User Files you have sent, the date and time messages were sent, and the email addresses of the recipients.

Page 15: How to secure your emails for sensitive docs

Responses to MegaUpload shutdown

Page 16: How to secure your emails for sensitive docs

Secure document services

Page 17: How to secure your emails for sensitive docs
Page 18: How to secure your emails for sensitive docs

Secure document issues

• Do you need secure intra- or inter-enterprise collaboration?

• Can you recall sent messages? • What happens when someone leaves your

company? • How does the service affect users’ existing

email experience? • Can you authenticate recipients and thwart

malware such as key-loggers?

Page 19: How to secure your emails for sensitive docs

Data loss prevention

• Global Velocity's GV-2010 security appliance • BlueCoat Networks DLP appliance• Sendmail's Sentrion email server• McAfee Host DLP• Symantec/Vontu DLP v10• Safend Protector• Trend Micro DLP

Page 20: How to secure your emails for sensitive docs
Page 21: How to secure your emails for sensitive docs

DLP Drawbacks

• You are tracking rather than encrypting messages

• Once a message leaves your premises, you can’t do anything about it

• Can be expensive

Page 22: How to secure your emails for sensitive docs

Full encryption choices

• Voltage SecureMail• PGP Universal Server• Sophos Email Appliance• Cisco IronPort• Proofpoint Protection Server• Mimecast's Unified Email Messaging• Echoworx Encrypted Mail

Page 23: How to secure your emails for sensitive docs

Common product features

• Crypto key management• Auto encrypt sensitive info as part of their

policies• Lots more rules processing• Outlook plug-ins

Page 24: How to secure your emails for sensitive docs
Page 25: How to secure your emails for sensitive docs

Encryption LandscapeVendor Approach Key/Certificate Management Mobile capability

Cisco IronPort Symmetric key per message

CRES (cloud)Or on premise

Web-based

Proofpoint Symmetric key per message

PP Key service or on premise Web-based; read only

Symantec/PGP PKI PGP Directory or on premise Web-based; read only

Entrust PKI Entrust PKI or on premise Web-based

Zix PKI Zix Directory Web-based

Voltage Identity-based encryption

Cloud-based Native app

Echoworx PKI Echoworx PKI Native app

Page 26: How to secure your emails for sensitive docs

Voltage’s Secure email mobile client

Page 27: How to secure your emails for sensitive docs

Questions?

David [email protected]

314 277 7832@dstrom (Twitter)

http://strominator.com


SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure Data Delivery Network Ports SSH Implementation Best Practices SaltStack Enterprise

Cloud Terminal: Secure Access to Sensitive Applications from

WRITING EMAILS – EMAILS SCHREIBEN€¦ · WRITING EMAILS – EMAILS SCHREIBEN WRITING SUCCESSFUL AND EFFECTIVE EMAILS – ERFOLGREICHE UND EFFEKTIVE EMAILS SCHREIBEN Here is a checklist

Control and secure sensitive data while empowering ... · PDF fileSolutions Brief Control and secure sensitive data while empowering business mobility with ShareFile Solve top financial

SENSITIVE BUT UNCLASSIFIED NON-RECORD Duplicate C …...TO ITD) (FBI) Subject: ECP NationaA Securitl Lettery s b6 b7C SENSITIVE BUT UNCLASSIFIED NON-RECORD Duplicate "C" emails 6/22/2007

CONFIDENTIAL - This report contains sensitive information ... · CONFIDENTIAL - This report contains sensitive information and should be stored in a secure location ... Check for

Sending and Receiving Secure Emails and Documents with ZIX...Apr 26, 2019  · Sending and Receiving Secure Emails and Documents with ZIX . Security and protection of your personal

MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

CodeSafe: execute code in a secure environment · CodeSafe: execute code in a secure environment ° Protects sensitive applications by executing them inside tamper-resistant hardware

Research Article A Secure Storage System for Sensitive ...downloads.hindawi.com/journals/ijdsn/2015/929380.pdfResearch Article A Secure Storage System for Sensitive Data Protection

Cloud Terminal: Secure Access to Sensitive Applications from

Secure Sensitive Data With Mule Credentials Vault

Deep Dive: How to Secure and Share Sensitive Information · 2018-09-29 · 4 June 2018© MARKLOGIC CORPORATION Deep Dive: How to Secure and Share Sensitive Information Caio Milani

How to access encrypted emails or files using SDX … · How to access encrypted emails or files using SDX Switch Secure Email ... You must use the email address that the Switch Secure

Secure Email USER Guides New/IT/Secure Email... · SECURE EMAIL USER GUIDE ... document is a user guide for how to retrieve and send secure emails via the State of South Carolina

Tech net Why you shouldn't send sensitive emails

MaaS360 Secure Browser - Zones, Inc Secure Browser datasheet.pdf · MaaS360 Secure Browser can send emails to administrators in real time, alerting them of attempts to access these

Secure Forms and Follow-Up Emails

Sending Emails over Secure Email Connections with S7 … · Sending Emails over Secure Email Connections with S7-1500 and ... Establishing Secure Connection to ... GeoTrust Global

VeriSketch: Synthesizing Secure Hardware Designs with ... · VeriSketch: Synthesizing Secure Hardware Designs with Timing-Sensitive Information Flow Properties Armaiti Ardeshiricham

SHOULD I SEND CONFIDENTIAL OR SENSITIVE … · SHOULD I SEND CONFIDENTIAL OR SENSITIVE INFORMATION THROUGH EMAIL? Unencrypted emails are inherently unsecure and are not a reliable

Securing sensitive data through APIs and AI pattern recognition · 2019. 10. 29. · Sesh Raj, President DSAPPS INC • Introducing a new way to robustly secure sensitive enterprise

Secure Data Deletion...Secure deletion protects the security and privacy of sensitive data corporate data, customer data, banking data privileged communications GPS locations, wireless

Phishing and bogus emails: HM Revenue and Customs ... - gov.uk · Emails sent to customers from [email protected] claiming that HMRC is carrying out additional security checks and

Secure Messaging Plus - startel.com Secure... · Startel Secure Messaging Plus (SM+) is a High-Security messaging system that allows subscribers to exchange sensitive information

Secure High-Priority Facilities from Perimeter Threats ... · Secure High-Priority Facilities from Perimeter Threats Securing highly sensitive military sites is a top priority for

Comprehensive Secure Remote Access Solution€¦ · accessing sensitive corporate data. Comprehensive Secure Access The Intelligent Application Gateway (IAG) with Application Optimizers

Unshare and Secure Sensitive Data - Encrypt Everything eBook · Follow these steps to unshare and protect your sensitive data Start by identifying where your most sensitive data assets

Using Digital Certificates To Secure Sensitive Communications At Uw Madison

IOT: Authentication Signature to Secure Sensitive Health ... · IOT: Authentication Signature to Secure Sensitive Health Care Data Leonella Camilleri Middlesex University Malta [email protected]

Transform Emails into HTML Emails

SECURE KVM SWITCHES · 2019-10-17 · 1.877.877.2269 BLACKBOX.COM /SECUREKVM 3 Secure KVM Switches Keep Sensitive Data Classified A secure KVM switch is a 2-, 4-, 8- or 16-port desktop

Secure access to sensitive data on mobile devices - AFCEA Mobile Symposium 2013 presentation

Vanguard Secure Email Service (VSES) User Guide · PDF fileVanguard Secure Email Service (VSES) User Guide 2 . Note: ... administrator if copies of secure emails you sendare not received

Healthcare Organizations Secure Sensitive Data and … · Healthcare Organizations Secure Sensitive Data and Expand Regulatory Compliance with Salesforce Event ... Originally bought