SecureIT - S/MIME Gateway


WHAT SecureIT® DOES
 HOW SecureIT® WORKS SecureIT® STANDARDS WHERE TO GET SecureIT®
 DOWNLOADS

S.E.E. V3 Accredited logo SecureIT® gives you transparent and easy to use policy based S/MIME signing and encryption of e-mail at the gateway.

SecureIT® works as a stand-alone SMTP relay or with Clearswift's MIMEsweeper for SMTPTM to ensure that:
  • Message content remains confidential during transmission over the public network

  • Recipients can be certain about the authenticity and integrity of messages they receive

  • Control and management of the Public Key Infrastructure (PKI) necessary for this process is maintained at a single point

Encryption provides privacy for content as it passes across the public network. Digital signatures provide proof that a message is from who it appears to be from and that it has not been tampered with during transmission. But these processes can create problems like exposure to content threats, orphaned data that can't be decrypted, unauthorised transfer of confidential information and the complexity of managing and synchronising all the public and private keys necessary to run the process.

SecureIT® solves these problems.

What SecureIT TM does



SecureIT® is a stand-alone S/MIME SMTP relay that adds S/MIME encryption and digital signing to standard email systems.

SecureIT® is also an S/MIME extension to MIMEsweeper for SMTP's powerful, policy-based content security engine. This helps to prevent damage from threats that might be hidden in the content of encrypted e-mail.

SecureIT® can also be used by ISPs, ASPs and in cloud based SAAS to provide S/MIME messaging services.

SecureIT® provides encryption/decryption and signing/signature verification to S/MIME standards at the gateway. This avoids the high cost, complexity and security pitfalls associated with desktop solutions.

SecureIT® automates the process for establishing and maintaining links to other S/MIME gateways. This guarantees security policy is always applied and makes the set up and operation of links transparent to end users and administrators.

SecureIT® has its own Certificate Authority software (licensed separately) that can be used to generate traditional RSA key pairs and Advanced Employee Certificates as used in Danish government S/MIME systems.

BACK TO TOP

How SecureIT TM works



For large dynamic networks, SecureIT® automates site-to-site link set up and maintenance via periodic reference to an authoritative LDAP directory. Certificates and other data obtained from the directory are cached locally. For smaller static networks SecureIT® provides simplified manual link set up.

SecureIT® permits:
  • More than one active certificate per domain

  • Different certificates for signing and encryption

  • Different signing and encryption algorithms for each link

  • Multiple internal domains/users with their own certificates, proxy signing

  • Automatic retrieval of replacements for expired public certificates

  • Intelligent handling of external List Server messages

  • Annotation of message From: and Subject: fields to show secure arrival

  • Concealment of Subject

  • Outbound subject line commands select policy & change sender address

  • Use of keywords in the message body, attachments or subject line to trigger policy

  • Collection and optional activation of certificates from inbound messages

  • Retention of before and after encryption copies for archive purposes

  • Detailed reporting of signature verification and decryption status is used to create meaningful messages and activity logs.

  • Messages failing policy to be annotated (message text prepended and appended) or attached to an informative message.

  • Automatic retry when outbound certificate problems occur

  • Integration with customised messaging systems via remote procedure call API

For large dynamic secure communities policy rules are stored, updated and disseminated centrally. SecureIT® automates link set up and maintenance, and automatically obtains and caches certificates via LDAP and CRLs via https.

For smaller static secure communities SecureIT® provides local policy and simplified manual link set up and maintenance.

Link policy is stored, updated and disseminated centrally.

Detailed signature verification and decryption status indicators are reported and can be used to create very meaningful error messages for recipients. Messages failing encryption/signature policy can be annotated (message text prepended and appended) or encapsulated (added to an informative message as an attachment).

SecureIT® uses Certificate Revocation Lists (CRL) and automatically changes the status of revoked certificates.

BACK TO TOP

SecureIT TM Standards



SecureIT® is accredited by the New Zealand Government for use in its Secure Electronic Environment.

SecureIT® provides encryption with a choice of: RC2 (40, 64 and 128-Bit), DES (56-Bit), Triple DES (168-Bit) and AES algorithms with X9.31 PRNG.

Digital signing uses RSA with MD5, SHA-1 and SHA-2. Both clear signing and opaque signing are supported.

SecureIT® supports X.509 v3 certificates with key lengths of 512, 1024, 2048 or 4096-Bit. These can be issued by any of the major Certificate Authorities, or self-signed certificates can be generated by SecureIT®. Private key import from PKCS#12 containers and storage in an encrypted vault. Public key import from P7C, P7B, CER, PEM and PKCS#12 containers and LDAP directories.

SecureIT® supports S/MIME v3 capabilities.

SecureIT® is available in SMTP relay mode under MS-Windows and Linux and available for MIMEsweeper for SMTP under MS-Windows.

BACK TO TOP

Where to get SecureIT TM



Demark, Sweden & Norway
Dubex A/S
Gyngemose Parkvej 50
DK-2860 Soeborg
Copenhagen
Tlf: +45 3283 0430
E-Mail: info@dubex.dk
Web: www.dubex.dk


Germany
Kontaktinformationen
NetCon Unternehmensberatung
Telephon +49 (0)2571-57 11 50
Fax: +49 (0)2571-57 11 52
E-Mail: info@netcon-consulting.com
Web: www.netcon-consulting.com
North America
Ensured Security
4300 Number 5 Road, Richmond,
BC V6X 2V3, CANADA
Phone: +1 (778) 855 2546
E-Mail: sales@ensuredsecurity.com
Web: www.ensuredsecurity.com



All Other Locations
SSS - IT Security Specialists
Telephone +64 4 917-6670
e-mail: info@sss.co.nz
web: www.sss.co.nz

BACK TO TOP

SecureIT TM Downloads




SecureIT - PDF Data Sheet

PDF Data Sheet (279kb)
SecureIT - PDF Data Sheet

Interactive Diagrams
Inbound (600KB)
Outbound (600KB)
Key Guardian Inbound (600KB)
Key Guardian Outbound (600KB)

BACK TO TOP




View the complete
SSS IT Module Range

 SecureIT®
S/MIME
Gateway

ReleaseIT®
Quarantine
Area
Management

LDAPtIT®
LDAP
Interoperability

StopIT®
Message
Traffic
Management

RecallIT®
Message
Retrieval

StripIT®
Active Code
Removal


© 2003 - SSS - IT Security Specialists SecureIT TM IS A PRODUCT OF SSS - IT Security Specialists