90 percent of all attacks on businesses occur via email
E-Mail security requires much more than integration of virus- and spamfilters
- Spam filter
- Virus detection
- Malware recognition
- File-format identification
- Anomaly detection
- Data-loss prevention
- Mail tracking
- URL validation
- Mitigation of
denial-of-service (DOS) attacks
- Policy-based rules
- SMTP firewall
- Safeguarding against failure
- secure DNS resolver
- Greylisting (in spite of protection.outlook.com)
- TLS (Letsencrypt etc.)
Transport Encryption (TLS)
For all intents and purposes secure transport encryption (>=TLS1.2) should be standard for e-mails.
In reality however strict rules are often ignored since these could interfere with the accustomed ways of communication.
For this reason we support the evaluation of employed cyphers and the setup of mandatory TLS-rules with certain defined mail servers.
Furthermore with our service SMTP-Watch we offer monitoring of the expiration dates of certificates as well as the general operativeness - both inbound and outbound.
Individual Encryption (SMIME/PGP/ADHOC)
This type of encryption ensures that an e-mail can only be read by a certain recipient.
Therefor an exchange of public keys (SMIME/PGP) in advance or predefinition of an individual keyword (ADHOC encryption) is necessary.
A special challenge in this context is the evaluation of the content regarding security threads.
Ideally this content analysis is performed on the encryption-gateway.
For our customers we offer the planning, setup and operation of these gateways.