Re: Encrypted email service for B2C clients

["Williams, Marn PENC:EX" <Marn.Williams () pensionsbc ca>]

Hi
Check out email2, a Canadian product, and see if it fits the bill.

http://www.email2.com/

Marn Williams MCSA, GSEC, G2700, Linux+
________________________________
From: pauldotcom-bounces () pdc-mail pauldotcom com [mailto:pauldotcom-bounces () pdc-mail pauldotcom com] On Behalf Of 
Jeremy Pommerening
Sent: March 19, 2012 2:17 PM
To: PaulDotCom Security Weekly Mailing List
Subject: Re: [Pauldotcom] Encrypted email service for B2C clients

I've used Proofpoint in the past and currently using Fortimail.  I liked the Proofpoint when I had it installed (as 
recently as last month) but it's pricey.  Fortimail is more reasonable.  Sophos has a nice product that I've looked at 
also.  Both the Proofpoint and Fortimail solutions provide a secure web portal to retrieve encrypted email.  All the 
user has to do is go to the site and register one time.

Jeremy Pommerening
CISSP,GCFA,GPEN,GAWN,GCFW,
MCSE Win2K, MCSE NT4
________________________________
From: Josh More <jmore () starmind org>
To: PaulDotCom Security Weekly Mailing List <pauldotcom () mail pauldotcom com>
Sent: Monday, March 19, 2012 2:19 PM
Subject: Re: [Pauldotcom] Encrypted email service for B2C clients

I *really* like the way that Sophos does this. It just encrypts the email into a PDF and the user registers on the web 
portal.  I've yet to have a novice user have a problem with it, and as much as we dislike the fact that everyone has a 
PDF reader on their system, it does mean that everyone has a decryption client.

The drawback, of course, is that it's appliance-based and needs to either be racked or run in a VM infrastructure.  If 
you need a cloud-based solution, the only other one I have experience with is Zix.

-Josh More



On Mon, Mar 19, 2012 at 9:40 AM, Hembrow, Chris <chris.hembrow () interserve com<mailto:chris.hembrow () interserve 
com>> wrote:
Hi all,

I have a need to send sensitive information to customers in a B2C environment; this is a very computer illiterate 
crowd.  Does anyone have experience with services like SSLPost.com<http://SSLPost.com>?  Basically this just sends an 
email with a link to an online application for decrypting and viewing the message.

Alternatively, can anyone recommend a better solution for sending encrypted emails to a large, disparate user base 
without requiring any client-side installation?

Thanks,

Chris


"This email and any file attachments do not form a contract unless expressly stated. They may contain privileged, 
confidential and/or copyright information. If you are not the intended recipient or the service provider responsible 
for delivering this please delete the material from any computer and return to the sender at once; do not use, disclose 
or reproduce its contents. We do not accept liability for any error or omission in the message arising from corruption 
of, delay in or interference with, its transmission. We reserve the right to monitor email communications through 
normal internal and external networks. We believe but do not warrant that the email and the file attachments are virus 
free."

Interservefm Ltd.  Registered in England, Number : 2820560.
Registered Office: Capital Tower, 91 Waterloo Road, London SE1 8RT.
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com<mailto:Pauldotcom () mail pauldotcom com>
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com


_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com<mailto:Pauldotcom () mail pauldotcom com>
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com