E-Mail Verschlüsselung - ITEK - ETH Zürich
E-Mail Verschlüsselung - ITEK - ETH Zürich
E-Mail Verschlüsselung - ITEK - ETH Zürich
Erfolgreiche ePaper selbst erstellen
Machen Sie aus Ihren PDF Publikationen ein blätterbares Flipbook mit unserer einzigartigen Google optimierten e-Paper Software.
Totemo: Trust<strong>Mail</strong> Secure Email Gateway<br />
E-<strong>Mail</strong>-<strong>Verschlüsselung</strong><br />
• No plug-in or software installed on the internal user side<br />
• No plug-in or software installed on recipient side<br />
• Internal users can spontaneously communicate with anybody<br />
• Central definition of security policies possible<br />
• Flexibility on recipient side (support both S/MIME and PGP communication)<br />
• Central server-based content and virus checking still possible<br />
• Messages can be protected inside and outside of the company network<br />
• Not based on proprietary concepts, but on established standards<br />
• Take advantage of the native email encryption functionality available in email<br />
clients<br />
• No manual issuance or renewal of keys<br />
• High degree of automation to limit administration needs<br />
• Connectors to Active Directory or LDAP directories, external certificate authorities,<br />
etc.<br />
• Investment protection: it should be possible to upgrade the solution if necessary to<br />
support security tokens, HSMs (hardware security modules), Smartcards, fully<br />
qualified signatures, dual keying, Blackberry devices, etc.<br />
• http://www.totemo.ch/secure_email_white_papers.html<br />
10.5.06 :: Roland Dietlicher, Basisdienste<br />
Schlussfolgerungen?!<br />
E-<strong>Mail</strong>-<strong>Verschlüsselung</strong><br />
• Wie war das nochmals mit der BOT?<br />
– „Bereitstellung der notwendigen <strong>Verschlüsselung</strong>stechniken“<br />
– man darf vertrauliche Informationen elektronisch nur<br />
verschlüsselt verschicken<br />
– Für Datenschutz durch verschlüsselte Übermittlung sorgen.<br />
• Was müssen wir nun tun?<br />
– nichts <br />
– Link auf SwissSign, resp. GnuPG<br />
– SSL-Verbindungen zu unseren <strong>Mail</strong>servern<br />
• Was dürfen wir uns das kosten lassen?<br />
– Totemo Trust<strong>Mail</strong>-Server = Fr. xy<br />
10.5.06 :: Roland Dietlicher, Basisdienste<br />
8