Security Basics mailing list archives

RE: Client side email encryption

From: "martijn.list" <martijn.list () gmail com>
Date: Mon, 16 Mar 2009 20:55:53 +0100


>
> I've been tasked with finding an encryption solution for email sent from
> our HR departments to both internal and external clients. We are
> currently running MS Exchange 2003/Outlook 2003 and 2007. We have no
> plans to install Exchange 2007 at this time. One requirement we have is
> it must be installed on the client. We don't want to install anything on
> the mail servers.
>
> PGP/GPG is one option. Is anyone using a different product for client
> side encryption with Outlook?
>

You could try Djigzo email encryption gateway. It's open source andfree. Djigzo is an email encryption gateway (MTA) that encrypts anddecrypts your incoming and outgoing email. There is a VMware virtualappliance available which allows you to run it without any installation(apart from installing the VMware image).

It currently supports two encryption standards; S/MIME and PDFencryption. S/MIME provides authentication, message integrity andnon-repudiation (using X.509 certificates) and protection againstmessage interception. S/MIME uses public key encryption (PKI) forencryption and signing. PDF encryption can be used as a lightweightalternative to S/MIME encryption. PDF allows you to decrypt and readencrypted PDF documents. PDF documents can even contain attachmentsembedded within the encrypted PDF. The password for the PDF can bemanually set per recipient or a password can be randomly generated andsent to the recipient via SMS (using an external SMS gateway).


For more information see www.djigzo.com


Martijn Brinkers

--
Djigzo open source email encryption www.djigzo.com

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Find the source of cybercrime! Almost every crime today involves a computer or mobile device. Learn how to become a Computer Forensics Examiner in InfoSec Institute's hands-on Computer Forensics Course. Up to three industry recognized certs available, online computer forensics training available.

http://www.infosecinstitute.com/courses/computer_forensics_training.html
------------------------------------------------------------------------

Current thread:

Re: Client side email encryption, (continued)
- Re: Client side email encryption Ansgar Wiechers (Mar 16)
- RE: Client side email encryption Charis (Mar 16)
  - RE: Client side email encryption Matthew Calloway (Mar 16)
- Re: Client side email encryption badz (Mar 16)
- Re: Client side email encryption Vlad Styran (Mar 16)
  - Re: Client side email encryption Synita Capler (Mar 16)
- Re: Client side email encryption alfredhitchcock_007 (Mar 16)
- Re: Client side email encryption anon (Mar 16)
- Re: Client side email encryption sabinaharte (Mar 16)
- RE: Client side email encryption Bob Radvanovsky (Mar 16)
- RE: Client side email encryption martijn.list (Mar 16)