RE: Client side email encryption

["Matthew Calloway" <mcalloway () arccorp com>]

There is only one issue with Security Computing solution.  They do not
require complex passwords.    You could have a 1 character password.


Matt


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Charis
Sent: Friday, March 13, 2009 1:28 PM
To: 'Quigley, Joe'; security-basics () securityfocus com
Subject: RE: Client side email encryption 

Hi there,
A solution could be Secure's Computing Encryption Box. It is a separate
server that it will be place in front of your exchange server. You can
specify the characteristics of an email that should be sent encrypted
(based on content, envelope analysis, compliance i.e. HIPPA). Iron mail
should also be installed in the environment to have this to work. It
provides GW to GW encryption as well as Gw to User encryption (here can
be a bit tricky). In addition it has Secure Web Delivery which is a good
feature for gmail, hotmail etc users.
Feel free to ask for more info.
Regards,
Charis

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Quigley, Joe
Sent: Thursday, March 12, 2009 4:31 PM
To: security-basics () securityfocus com
Subject: Client side email encryption 

Hello everyone,

I've been tasked with finding an encryption solution for email sent from
our HR departments to both internal and external clients. We are
currently running MS Exchange 2003/Outlook 2003 and 2007. We have no
plans to install Exchange 2007 at this time. One requirement we have is
it must be installed on the client. We don't want to install anything on
the mail servers. 

PGP/GPG is one option. Is anyone using a different product for client
side encryption with Outlook?

Thank in advance for your time,

Joe