Today's confidentiality and privacy requirements drive organizations of all sizes and industries to secure sensitive data in email. Often particular types of data need to be encrypted, such as credit card numbers, intellectual property, or client information. Organizations also need to protect confidential emails for particular groups, such as executive management, human resources or legal departments.
Many organizations are turning to policy-based encryption to meet their encryption needs because it automatically encrypts data using content filtering rules that identify types of content or email for particular groups. Encryption is applied when the rules are triggered. With policy-based encryption, organizations avoid relying on individual users to secure important content.
Email Encryption for
InterScanT Messaging Hosted Security
Trend Micro, Incorporated
An overview of the email encryption add-on service for Trend Micro's hosted email security
Email Encryption for InterScan Messaging Hosted Security
Why Encrypt? Today's confidentiality and privacy requirements drive organizations of all sizes and industries to secure sensitive data in email. Often particular types of data need to be encrypted, such as credit card numbers, intellectual property, or client information. Organizations also need to protect confidential emails for particular groups, such as executive management, human resources or legal departments. Many organizations are turning to policy-based encryption to meet their encryption needs because it automatically encrypts data using content filtering rules that identify types of content or email for particular groups. Encryption is applied when the rules are triggered. With policy-based encryption, organizations avoid relying on individual users to secure important content.
Introducing Email Encryption for InterScan Messaging Hosted Security Trend Micro offers Email Encryption as an add-on service to InterScan Messaging Hosted Security. It integrates seamlessly with the content filtering capabilities of Trend Micro's hosted email security service that protects against spam, viruses and inappropriate content. Trend Micro Email Encryption leverages Identity-Based Encryption (IBE) to efficiently secure email addressed to anyone. This approach eliminates the burdensome pre-registration and certificate management of traditional Public Key Infrastructure (PKI) technology with dynamic key generation. Encrypted content is simply pushed from senders to recipients like any other email. For information on other email encryption solutions available from Trend Micro visit http://us.trendmicro.com/us/products/enterprise/email-encryption/index.html
The Role of TLS Transport Layer Security (TLS) is a type of encryption used by many hosted security vendors. TLS encrypts the email pipeline, but not the email itself. It can play an important role when paired with a hosted email encryption service, but is unreliable as a standalone solution. Both the sending and receiving server must enable TLS for the pipeline to be secure; there is no guarantee that the servers for the email recipient will have this enabled, and emails often take several hops through ISP servers before reaching their final destination, also breaking the chain of protection. This TLS is insufficient in protecting email content. See Figure 1.
Figure 1: TLS only protects a portion of the path along which the data travels and may not be supported along the complete pathway.
2 WHITE PAPER | EMAIL ENCRYPTION FOR INTERSCAN MESSAGING HOSTED SECURITY Email Encryption for InterScan Messaging Hosted Security
Enabling Policy-Based Email Encryption Email Encryption is integrated with the content filtering capabilities of InterScan Messaging Hosted Security, which provides flexible and easy filtering options for most every type of content. Administrators simply configure content rules that apply encryption as a rule action. Customers use TLS to secure email from their site to the InterScan Messaging Hosted Security server. Trend Micro provides TLS capabilities to all customers as part of the service to help secure transmission from the customer site to the service. The appropriate emails are then encrypted by the Email Encryption service based on policy rules created by the customer and sent securely to the recipients. (See Figure 2 below).
Figure 2: Email Encryption for InterScan Messaging Hosted Security efficiently secures email delivered to anyone with an email address. To apply encryption as action to a content filtering rule, administrators follow these five easy steps: 1. Specify that the rule applies to outbound email 2. Determine the sender / recipients for the rule 3. Select the message attributes (What is the filter looking for?) 4. Specify Encrypt email as the rule action 5. Name and save the rule When indicating senders or recipients for a particular rule, administrators can use specific email addresses or select an entire domain. Administrators can also specify exceptions to a rule. To identify content, administrators create a "keyword expression." Administrators may use any... [download for more]
