Introduction
SecureXD Encryption provides a transparent SMTP encryption that enables businesses to send policy-based and on-demand encrypted email without requiring additional software installation for the sender and the recipient. By offering a free and transparent encryption mechanism, SecureXD Encryption enables businesses to quickly comply with SOX, HIPAA, SEC and local government requirements for personal information encryption. By making it easy for both the sender and the recipient to communicate securely, SecureXD Encryption extends the business security beyond usual technical constrains.
Highlights:
- Policy-based encryption rules to mandate encryption to/from email addresses and domains.
- No software to install and configure, fully transparent process to the sender.
- Standards based TLS/SSL SMTP combined with 128bit SSL encrypted web application.
- On-demand encryption for instant encryption without policy rule management.
Policy Controlled Encryption Rules
SecureXD Encryption provides a policy-based transparent SMTP encryption - automatically encrypting mail sent from specific senders to specific recipients. By defining senders and recipients email addresses, companies can be assured that all communication sent between the two parties is always encrypted using a 128bit SSL certificate.
On Demand Encryption
SecureXD Encryption understands that most of the email we send doesn't contain private or personal information data that needs to be encrypted. Sometimes we do exchange NDA documents, quotes or information that is privileged and shouldn’t not fall into the wrong hands - but creating a complex encryption policy every time and managing it can be tiresome. To address this problem, SecureXD Encryption offers on-demand encryption - you can selectively encrypt a message just by placing the word [ENCRYPT] in the subject.
Security Processes, Protocols and Implementation
SecureXD Encryption makes sure that message never goes over the wire in clear text. Email sent from your mail server to our outbound SecureXD network is encrypted using the SMTP SSL/TLS connection, making it impossible for "man-in-the-middle" attacks that "sniff" the connection and look at its contents. Because we cannot enforce this level of encrypted connectivity with every recipient, SecureXD keeps encrypted messages in a secure database and only sends the recipient and invitation to retrieve the file over the encrypted SSL connection. By clicking on the link in the invitation email, users browser is sent to our enrollment site which asks them for personal information and establishes a password and PIN protected credentials so only the user with that email address can access the content.
SecureXD Encryption mechanism makes it difficult to impossible for a "man-in-the-middle" to obtain the email because the actual contents are never transferred over a plain or unencrypted connection. SecureXD Encryption site is only accessible by the recipients who established a password an a PIN, making it impossible for the recipients IT staff to browse through the items as the Administrator. Finally, the enrollment mechanism prevents the users from enrolling into the system before receiving an invitation that is triggered by an encrypted message - there is no pre-enrollment, no ability to resend the password or an easy way to get in through "social engineering."
Finally, all access is logged and can be audited on demand by the sender and business management. If the content were to fall into the wrong hands through in any way, their access would still be logged, making it easy for law enforcement to prosecute.
