Dispatch: A Unique Email Security Solution



Similar documents
Compliance in 5 Steps

Why Encryption is Essential to the Safety of Your Business

Evaluation Guide. eprism Messaging Security Suite V8.200

Security in Law Firms. What you need to know and how you can use secure to win more clients

Axway SecureTransport Ad-hoc File Transfer Service

1 2:00 p.m. EDT Thursday, March 26,

Welcome to the Protecting Your Identity. Training Module

MANAGED FILE TRANSFER: 10 STEPS TO SOX COMPLIANCE

VAULTIVE & MICROSOFT: COMPLEMENTARY ENCRYPTION SOLUTIONS. White Paper

Account Restrictions Agreement [ARA] - Required by LuxSci HIPAA Accounts

Mimecast Large File Send

Barracuda Security Service User Guide

MANAGED FILE TRANSFER: 10 STEPS TO HIPAA/HITECH COMPLIANCE

Protecting Your Organisation from Targeted Cyber Intrusion

Secure Your with Encryption as a Service

Security Considerations

E Mail Encryption End User Guide

Mimecast Services for Outlook (MSO4)

PCI Compliance. Top 10 Questions & Answers

Security Solutions

White paper. Why Encrypt? Securing without compromising communications

Deployment Guide. For the latest version of this document please go to:

Locking down a Hitachi ID Suite server

Policy Based Encryption E. Administrator Guide

Policy Based Encryption E. Administrator Guide

Implementing Transparent Security for Desktop Encryption Users

MCTS Guide to Microsoft Windows 7. Chapter 7 Windows 7 Security Features

FileCloud Security FAQ

WHITE PAPER. Managed File Transfer: When Data Loss Prevention Is Not Enough Moving Beyond Stopping Leaks and Protecting

Quick Heal Exchange Protection 4.0

Policy Based Encryption Z. Administrator Guide

MANAGED FILE TRANSFER: 10 STEPS TO PCI DSS COMPLIANCE

Securing Remote Vendor Access with Privileged Account Security

PCI Compliance Top 10 Questions and Answers

SecureSend File Transfer Portal Usage Guide

MANAGEMENT SOLUTIONS SAFEGUARD BUSINESS CONTINUITY AND PRODUCTIVITY WITH MIMECAST

Section 12 MUST BE COMPLETED BY: 4/22

EasiShare Whitepaper - Empowering Your Mobile Workforce

8 Critical Requirements for Secure, Mobile File Transfer and Collaboration

How To Achieve Pca Compliance With Redhat Enterprise Linux

THE COMPLETE GUIDE TO GOOGLE APPS SECURITY. Building a comprehensive Google Apps security plan

User Guide. Version 3.0 April 2006

Windows Operating Systems. Basic Security

Erado Archiving & Setup Instruction Microsoft Exchange 2007 Push Journaling

ESET Endpoint Security 6 ESET Endpoint Antivirus 6 for Windows

Global Partner Management Notice

White Paper. Securing and Integrating File Transfers Over the Internet

Top 10 Features: Clearswift SECURE Gateway

White Paper: Multi-Factor Authentication Platform

eztechdirect Backup Service Features

Configuration Information

Enterprise Archive Managed Archiving & ediscovery Services User Manual

Encryption Services Buyers Guide

SOOKASA WHITEPAPER SECURITY SOOKASA.COM

Parla, Secure Cloud

Where is your Corporate Data Going? 5 tips for selecting an enterprise-grade file sharing solution.

How To Secure An Emr-Link System Architecture

Setup Guide. Archiving for Microsoft Exchange Server 2007

Google Identity Services for work

UNCLASSIFIED. UK Archiving powered by Mimecast Service Description

Projectplace: A Secure Project Collaboration Solution

Internet threats: steps to security for your small business

Are your multi-function printers a security risk? Here are five key strategies for safeguarding your data

Top 7 Tips for Better Business Continuity

Security Architecture Whitepaper

AVG AntiVirus. How does this benefit you?

Codes of Connection for Devices Connected to Newcastle University ICT Network

Setup Guide Revision B. McAfee SaaS Archiving for Microsoft Exchange Server 2010

THE SECURITY OF HOSTED EXCHANGE FOR SMBs

Research Information Security Guideline

A Decision Maker s Guide to Securing an IT Infrastructure

The Key to Secure Online Financial Transactions

High Security Online Backup. A Cyphertite White Paper February, Cloud-Based Backup Storage Threat Models

AIRDEFENSE SOLUTIONS PROTECT YOUR WIRELESS NETWORK AND YOUR CRITICAL DATA SECURITY AND COMPLIANCE

Encryption Services

Archive Add-in Administrator Guide

Secure Frequently Asked Questions

Setup Guide. Archiving for Microsoft Exchange Server 2010

FedPayments Reporter Encrypted Delivery Overview

SECUR IN MIRTH CONNECT. Best Practices and Vulnerabilities of Mirth Connect. Author: Jeff Campbell Technical Consultant, Galen Healthcare Solutions

BYOD Guidance: BlackBerry Secure Work Space

SecureCom Mobile s mission is to help people keep their private communication private.

3 Marketing Security Risks. How to combat the threats to the security of your Marketing Database

Transcription:

Dispatch: A Unique Email Security Solution 720 836 1222 sales / support sales@absio.com email www.absio.com web 8740 Lucent Boulevard, Ste 101 Highlands Ranch, CO, 80129 1 110-WP005-1

Organizations use email every day to store, deliver, and discuss sensitive information, such as financial data, business plans, intellectual property, client and employee records, and more. Current email security products consistently fail to provide the security and control businesses are looking for, and consistently succeed at annoying IT administrators and employee end users. As a result, many businesses have limited or delayed the implementation of email encryption services. The Absio Dispatch application enables organizations to secure their email communications by invisibly encrypting each individual message and attachment automatically. Dispatch adds the optional ability for senders to control what recipients can do with messages and attached files once received. Senders can determine in advance if recipients can save, print, copy, forward or reply all to a message, and if recipients can save, print or copy from attached files. Senders can also set messages to expire at a certain time, or recall sent messages on demand. Dispatch is easy to use, easy to manage, and provides real security and control over your email communications. In order to determine if Dispatch is the right solution for your organization, you should answer these two key questions: 1. Why email among the various security risks you face, why should email security be a high priority? 2. Why Dispatch does Dispatch address email risk better than other available solutions from a security, control, and ease-of-use perspective? Preface 1

WHY EMAIL? Every business would like to secure and control its critical digital information at all times, everywhere it exists. Digital information can be categorized two ways: (i) structured (stored in a database), and (ii) unstructured (files, such as emails, Word or Excel documents, PDFs and pictures). While database applications generally provide a means of controlling structured data, unstructured data is typically shared between multiple users on multiple systems across multiple domains. This makes it nearly impossible to know where the data is, who has access to it, and how it is being used at any given time. Email messages and file attachments are types of unstructured data. While your organization may have some form of secure file repository, how many copies of sensitive email messages and attachments are stored on your email service provider s servers, as well as your employees and their recipients devices? From the standpoint of security and control, email is likely the most out-of-control application used by your organization. In essence, each time an employee sends an email, you are outsourcing the security of the communication and any attached files to the recipients, whether they are inside the organization or not. Securing and controlling email with existing email security products has proven impossible, because they all use legacy email protocols (underlying rules computers must follow in order to enable email communications) that were never intended to be secure or to enable control. Understanding the deficiencies of legacy email protocols is critical when selecting an email security solution. 1. Weak user authentication and permissions. Since you don t know and can t choose who is sending you email, you need spam blockers to keep inbound email from flooding your inbox, and anti-malware to keep hackers from using email to install malicious software (phishing attacks). Unfortunately, anti-malware vendors cannot keep up with the pace of new attacks. Two-factor authentication (such as requiring that a user verify their email address via a web link) and various data loss prevention technologies (inspecting outbound email for sensitive information like social security numbers) are partial compensations for not being sure who is sending you email or who is receiving the email you send. 2. Transmission in the clear. HTTPS and TLS protocols work to the degree that servers are properly configured, and software is updated on every link in the communication chain. Email messages are sent through many and varying servers between the sender s device and the final recipient s device. Each of those servers is vulnerable to attack, and often email messages are only encrypted between the sender s device and the first server in the chain. Why Email? 2

3. No control of intermediate servers. As mentioned above, email messages and attachments are sent to multiple servers between the sender s and recipients devices. Unencrypted email messages are often read and/or copied and stored by several of those intermediate servers. None of the legacy email protocols provide visibility or audit records to know what is happening to email received by each server. 4. No protection of email in storage. The vast majority of email messages and attached files are in storage at any given time. The number of copies and where they are stored is unknown. Major email breaches are a result of storage attacks, which are far easier to execute (lost or stolen device, malware, etc.) and result in a greater volume of valuable information. Transmission security does nothing to protect emails and files in storage. In an enterprise environment using Microsoft Outlook, with or without Exchange, email messages and attachments are stored in clear text on the company s email server and on end user devices. 5. No control over redistribution. Even if an email is stored and transmitted securely, once accessed by a recipient, the sender has no control over redistribution of the email message and attachment contents. The sender loses control over who receives the content, what they do with it, and whether or not it is redistributed securely. To better understand the deficiencies of legacy email protocols, it s useful to understand all the places where email content may travel or be stored. SENDER DEVICE SENDER ISP/SERVER RECIPIENT ISP/SERVER RECIPIENT DEVICE Internet Connection Internet Connection Internet Connection Potential Risks SENDER OR SENDER DEVICE INTERNET CONNECTION ISP OR COMPANY SERVER RECIPIENT OR RECIPIENT DEVICE Sender mistake Device hack/attack Lost or stolen device Eavesdropping Server hack/attack Subpoena Other breach Recipient mistake Unintended distribution Device hack/attack Lost or stolen device Why Email? 3

For email to be secure, it must be automatically secured everywhere messages and attachments exist on the sender s device, on company servers, in transit, on the email service provider s servers, and on the recipient s device. The sender also needs to be able to decide in advance what recipients can do with the messages and attachments they send, and know that the receiving email application will reliably enforce those controls. This is not possible using legacy email protocols, but is possible using a new email protocol designed to implement security by default and control on demand. WHY DISPATCH? Dispatch does not rely on legacy email protocols. Originally developed to secure battlefield communications, the Dispatch application uses a new, patented email protocol that enables automatic, persistent encryption of messages and attached files in storage and in transit, and optional control over what recipients can do with received messages and files while in use. Senders can rest assured that their sensitive email messages and attachments will be stored and shared securely by default, and that the rules they set are reliably enforced by the Dispatch application on their recipients devices. Using an email application provides a host of usability and security benefits. Many email security solutions force recipients to open a separate web portal to access secure messages and files. If your recipients need to access any of the messages or attached files outside the portal (e.g. offline), there is no option other than to allow them to download the content to their devices in an unsecure and uncontrolled format. With Dispatch, users install the application, sign up for an Absio account one time, and then are able to send and receive secure and controlled messages within a familiar email interface. Since Dispatch uses an updated email protocol, it can be used right within your Outlook email client. Legacy email messages and Dispatch messages are integrated in the same inbox, and Dispatch messages can be stored and moved into any Outlook folder. In addition, an easy-to-use, standalone version of the Dispatch application is available for desktop and mobile devices. Combining everywhere, all the time security, optional usage controls, and an easy-to-use application interface allows Absio to offer the following unique feature set through Dispatch: Each Dispatch message and attachment is individually encrypted in storage and in transit with its own encryption key. In virtually all other secure email technologies, all your messages and attachments are encrypted and decrypted using a single encryption key, which is a much easier exploit for any attacker. Why Dispatch? 4

Dispatch messages and attachments are automatically stored in encrypted form on both sender and recipient devices. Most secure email technologies do not provide for automatic encryption at the device level, and, as a result, your emails are readable if your or recipient s device is lost or stolen. Dispatch messages are automatically stored in Absio s patented Obfuscating File System, where the filenames of stored messages and attachments are intentionally unrecognizable. Other secure email providers store encrypted messages with recognizable filenames and types. If filenames and types are recognizable, attackers can see what to attack and attempt to decrypt by brute force. When logged in to Dispatch, only the messages and attachments currently being viewed are decrypted. With most other secure email services, all your messages are decrypted when you are logged in. If malware has been installed on your device, all those messages are available to an attacker. In addition to username and password, Dispatch requires the presence of a user key file on the local device to log in and access messages. Without this additional level of authentication, compromised usernames and passwords can enable an attacker to access your email from any device. Other secure email technologies fail to apply this additional level of authentication. Dispatch messages and attachments are encrypted on the local device before transmission to the Absio server. Most secure email technologies do not encrypt the message or attachments until they reach the email server, meaning the service provider has access to the encryption keys and can decrypt your email (whether required to do so, or if they are subject to a breach or mistake). Absio never has possession of user passwords or unencrypted key files. We can t read your email or enable others to do so. With Dispatch, every message and attachment is provably sent, received, and stored in encrypted form, meaning that under most current regulatory requirements (including HIPAA, GLBA, SOX and others), a breach of email data would not be reportable. The vast majority of even secure email vendors cannot provide this assurance, and a breach would very likely need to be reported to the relevant governmental agency and to those affected by the breach. Why Dispatch? 5

Previously sent Dispatch messages and attachments can be recalled. If not, it s very difficult to recover from messages sent by mistake or in haste. Most secure email vendors do not provide this capability. The sender of a Dispatch message can set an expiration time for sent messages. If not, recipients can retain messages and attachments for as long as they want whether you want them to or not. As with recall, most secure email vendors do not provide this capability. Dispatch offers the most extensive set of control capabilities available today. The sender of a Dispatch message can control a recipient s ability to forward messages, print messages and attachments, save messages and attachments, copy and paste message and attachment contents, and reply all to message recipients. If not, recipients, or those who successfully attack recipients, can do whatever they like with the messages and attached files. With Dispatch, a free user can initiate secure communications with a paying user. Most other secure email technologies only provide non-paying recipients the ability to reply to a message, not initiate one, which fails to respect the security of inbound communications from customers or clients, and incents customers and business partners to bypass secure email solutions. Corporate administrators of Dispatch can manage group users and encrypted email archives. If not, it is difficult to implement secure email and to meet regulatory or corporate requirements for retention. Unencrypted archives are a high-value target for attackers. Dispatch is available as a plug-in to Microsoft Outlook, a standalone Windows desktop application, and a standalone mobile application for ios and Android devices. A standalone OSX application will be available in early 2016. The business service plan also includes a comprehensive administrative console for managing group users and policies, and a searchable archiving application to store encrypted messages. Archived Dispatch messages can also be exported to other unencrypted archiving tools or e-discovery systems. Absio s dedicated support team ensures enterprise administrators have constant help from US-based employees deeply knowledgeable in the Absio product suite. If you are looking for a solution to truly secure and control your email communications, contact us today for a demonstration of Absio Dispatch in an enterprise environment. Why Dispatch? 6

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information