It is crucial for organizations like you to comply with the various mandatory regulations.
Find out how SecureAge Technology can help you to comply with these regulations.

Data & Application Security

Data Security

SecureAge SecureEmail

Email is an indispensable, daily communication tool to all corporations and governmental organizations. Sensitive corporate information and top secret documents are frequently transmitted via emails among employees and external parties. Such emails can be easily eavesdropped and modified along the network link, accessed directly on the mail server, and recovered from backup storage. Confidential emails can also be easily forwarded to unauthorized recipients resulting in data leaks, possible embarrassment to organizations or even violation of governmental legislations.

How can SecureAge SecureEmail protect your email communication?

SecureAge SecureEmail helps to protect your organization against any email vulnerabilities. SecureAge SecureEmail provides a powerful policy based security control by allowing intuitive labeling of sensitive email information and controlling of how each labeled email should be treated when it is transmitted, stored, forwarded and replied to. Using a software configuration tool, an organization can easily define their preferred set of email classification labels like “Confidential”, “Secret”, “Protected”, etc. Such labels are clearly highlighted in different colors and added to the email body in plain text, html text and rich text format. Consequently, printed email will bear the same labeled text. These labels could also be added to email subject line to allow for convenient viewing in email list view, and added to email MIME header so that Mail Server (MTA) could apply additional policy control on such emails.

SecureAge SecureEmail enables secure email transmission with any recipient, anytime and anywhere without the inconvenience of upgrading or modifying the current email infrastructure. It helps ensure the privacy and integrity of emails without any user’s involvement. It provides a ready platform that makes integration and deployment into your existing infrastructure and processes with ease. With SecureAge SecureEmail, your emails will comply with governmental regulations and you can be assured that your email communications with clients, partners and suppliers are kept absolutely confidential.

Key Features

Protocols

Uses advanced Email cryptographic security support – S/MIME (Secure/Multipurpose Internet Mail Extensions) standards.
Supports the most updated standard based on the S/MIME version 3.1 (IETF RFC 3851).
Supports the S/MIME email compression format standard (IETF RFC 3274), which significantly reduces the size of standard secure email message and attachment by as much as 5 times when compared to an uncompressed email.

Label and Policy Control

Classifying the email by using Label (i.e. Confidential, Secret, Top Secret etc).
The Label is securely embedded into signed or encrypted emails so that they could not be tampered with.
Allow different Policy based on the Label (i.e. Different Algorithm for different Label, the encryption must be perform for email with “Classified” Label for example etc)
Embed the Label to email body. The Label is also printed when the email is printed to create awareness to the user when handling the printed email.
Embed the Label to the email subject line and MIME header so that email server or Mail Transfer Agent (MTA) could apply further policy control to these labeled email. For example, an MTA may be configured to block email that is labeled as “Top Secret” from being pushed to unprotected PDA devices.

Ease-of-use

The end user only needs to select the Label and the rest is done by SecureEmail.
Provides a consistent way to send and receive email messages and attachments securely.
Provides cryptographic security services for email applications that do not require any human intervention.

Interoperability

Interoperable with any PKCS#11-based Secure Device like Smart Card, Security Token, Trusted Platform Module (TPM), Hardware Security Module (HSM) or any proprietary PKCS#11-based Security Device.

Key Management

Enables access to unlimited key history and automatically selects the correct key for users to decrypt any past email of their choice.
Supports both single-key and dual-key usages. The user may make use of a single private and public key pair for signing and encrypting their emails or different key pair.
Comes with a convenient migration tool for different email platforms enabling users to migrate emails encrypted by their old keys to the new keys.

Email Header Integrity Protection

Ensures email integrity by encrypting and signing not only your email content but also your email header. This will ensure that not only the email content is secured, but also the header against modification by unauthorized party.

Automatic Certificate Revocation Verification

Automatically checks the validity of all Digital Certificates used in any secure email operation against the CRL or OCSP responder. No manual operation needs to be performed by the User.

Automatic Certificate Lookup

Automatically performs a directory lookup of your recipients’ certificates using a LDAP (Lightweight Directory Access Protocol) repository or Microsoft Active Directory; and automatically imports these certificates to your personal certificate store.

Regulatory Compliance

Fulfill regulatory compliances like California Privacy Bill (SB 1386), Sarbanes-Oxley Act of 2002 (SOX), Health Information Portability and Accountability Act of 1996 (HIPAA) and the Gramm-Leach-Bliley Act of 1999 (GLBA).
Help Achieve Regulatory Compliance under HIPAA and GLBA by encrypting email messages and attachments to protect the confidentiality of information, whether during transmission over the Internet or stored in the desktop / laptop / email server. It also helps your organization to comply to the legislations of SOX with its authentication and encryption capabilities.

Technical Features Summary

Most Advanced Cryptographic Algorithm Support in the Market

SecureEmail supports a list of advanced security features that are not commonly available in other commercial secure email products. SecureEmail supports unlimited key length public key Digital Signature and encryption algorithms, including RSA, DSA and ECDSA. It allows the use of higher strength RSA (e.g. 2048-bit), the more efficient Elliptic Curve public key system or newest Hash Algorithm that is not supported internally by your email client application.

User Defined Encryption Algorithms

Allows enterprises to further boost the security strength of their corporate email system by incorporating their own proprietary encryption algorithms into SecureEmail, together with or without the standard encryption.

Encryption Algorithm

Public Key Algorithm
- RSA, DSA, ECDSA, ECDH
Symmetric Algorithm
- AES, Triple-DES, RC2, RC4

Hash Algorithm

MD2, MD5, SHA-1, SHA-224, SHA-256, SHA-384, SHA-512
Interoperable with other commercial S/MIME compliance solutions
Support S/MIME email compression
Embed email Labels to the email body to create awareness to the user when the email is printed
Auto-insertion of email label on email subject line
Support insertion of email label on email MIME header
Provides policy configuration wizard to create organization-specific policy rules
Provides centralized server to manage secure email policy and audit log of email operations
Support key migration for secure emails and key history management
Support auto-retrieval of recipient certificates via LDAP and AD
Support CRL & OCSP certificate validity checking
Support key and certificate import / export via PKCS #12, DER and PEM formats
Support any PKCS#11-based Security Device likes Smart Card and Security Token, TPM, HSM or other proprietary security devices
Support user account and certificate mapping
User-friendly GUI customization via email templates