Meganet Corporation VME Gateway Meganet Corporation Meganet Corporation is a leading worldwide provider of data security to Governments, Military, Armies, financial institutions, enterprise and large corporations around the world. Presents: email Security Solutions =
Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.
Meganet Corporation is a leading worldwide provider of data security to Governments, Military, Armies, financial institutions, enterprise and large corporations around the world.
Sending an eMail is like sending a postcard.
Are you sure no one else reads your emails but you?!!
Your email message can be intercepted easily and your information is being exposed!!
Your Business Contracts
Your new product’s diagram
Private Personal Information
Communication with your Bank
Military and classified information
Private Medical Information
The same goes for spammers who use the email system at work to send thousands of unsolicited email messages.
And what about the vast damage and time-loss caused by email viruses, which seems to making ever more frequent appearances these days.The Security Challenge
CSI/FBI 2002 Computer Crime and Security Survey
CSI/FBI 2002 Computer Crime and Security Survey
An automatic Policy Based email Security Server
Integrity thru Authentication and non-repudiation
Confidentiality thru Encryption and Decryption
Protection thru Anti-Virus Scanning and Content Filtering
Longevity thru Logging, Archiving and Retrieval
The e-mail system must provide ubiquity, interoperability, universal support and transparency.Solution requirements
Anti - Virus
The VME Gateway Policy Enforcer manages policy enforcement decisions in real-time on each e-mail message routed to VME Gateway .
Policy enforcement decisions are made using rules stored in the VME Gateway Rule Base.
These rules specify the actions to be taken on each message according to its contents.
Rules are applicable to an e-mail according to its sender and recipient, its contents and attachments.
Once the rules that apply to a given e-mail are determined, the actions they state are performed.VME Gateway
Primary actions include encryption, failing the message or taking no action.
When encryption is specified, the rule also indicates which encryption method should be applied and which encryption key to use.
Additional actions include generating log information, message archiving, return receipt, adding notes and rerouting the message.
Once VME Gateway security processing has been completed, the message is directed to the e-mail server.VME Gateway
Anti - Virus
1.No Client Software(self.exe encryption)
2.Client Resident Software(.cry encryption)
encrypts and decrypts messages, scans for viruses, filters the content of the
e-mail and its attachments.
Baltimore (PKI-Certificate Authority)
VanGuard: MailGuardian Enterprise
VMEgateway supports multiple encryption methods, symmetric and
Mail Security Policy
You can set general/selective rules for incoming/outgoing emails.
For example: ‘Catch’ and Encrypt all emails sent from the CEO in New York to the CEO in London, so only the 2 of them are able to read the message.
Transparent to the end user
The encryption is done automatically. Both sender and recipient need to understand nothing about encryption. VMEgateway can encrypt in 2 ways:
Symmetric: Both sender and recipient share the same password for encryption and decryption.
A-Symmetric: The recipient holds a Private key with which he will be able to open encrypted mails that were encrypted by VMEgateway using his Public key.
VMEgateway can ‘Catch’ any email with an attachment according to its type or size and decide what should happen to such an email.
For Example: VMEgateway can be set to block any outgoing emails that has an attachment which its type is *.Mpeg and which its size is bigger than 3MB.
More than that, you can ask VMEgateway to block any email that it’s attachment name is for example: Virus.exe from getting into your email system.
In VMEgateway also offer you more advanced content filtering technology, such as word filtering ext.
VMEgateway can sign every outgoing email, so the recipient can confirm that the email sent to him was not tampered and confirm the identity of the sender.
Encryption Key Management
VMEgateway has an internal database that holds the Symmetric and A-Symmetric keys. Managing the keys is done very easily.
There is an option to extend the database and work with an external database, such as MSQL 2000.
Public Key Auto Extraction
When an external user sends an s/mime encrypted email to one of your people, VMEgateway will automatically extract the public key from the message and keep it in the key database.
Next time when an email is sent from your organization to that person, VMEgateway will automatically use this public key for encryption.
Symmetric Auto Encryption
Suppose we set VMEgateway to automatically encrypt all emails you send to your potential client in Singapore.
Lets say you sent him your new proposal and you would like to make sure the email is seen only by you and him.
1. Write and send your email.
2. Your potential client receives the encrypted email as a small attachment.
3. He is asked to open the attachment and enter the shared secret key (password).
4. Writing the right key (password) enables the message to be automatically decrypted.
The Meganet Corporation will…………………
VME Gateway can remove macros from Microsoft Word and Excel documents to prevent potentially hostile content from entering or leaving the organization.
VME Gateway can interface with an LDAP server for online user and group information retrieval. The groups are managed on the LDAP server and VME Gateway downloads the group’s contents periodically.
VME Gateway can retrieve user certificates online from LDAP servers. When a certain user certificate is required, VME Gateway can generate an LDAP query to one or more LDAP servers for retrieving the users’ certificate.
VME Gateway can detects whether PDF files has java scripts, embedded files or links which might pose a security risk, and treats such a PDF file as if it contains a macro.
VME Gateway can apply rules to messages according to their contents. The message subject, text and attachments can be searched for predefined expressions and if found, can trigger specific actions. Expressions can be either in the form of a Boolean expression (cat and dog) or as a category. This feature is especially useful for catching sensitive information as it is being sent out or for blocking messages of specific type (junk mail, explicit content etc.)Additional Features
VME Gateway can detect HTML scripts, cookies and code references inside HTML content and can strip them to prevent potentially hostile content from entering or leaving the organization.Additional Features
VME Gateway includes a simulation tool used for policy verification. Using this tool, e-mail messages can be simulated and processed by the system without actually being sent out. The outcome of the simulated message is displayed, allowing the administrator to confirm that the system behaves as expectedAdditional Features
VME Gateway include three client software packages that can be used for decrypting symmetrically encrypted messages created by VME Gateway .
These packages ‘Decryptor’, ‘FileDecryptor’ and ‘FileDecryptor2’ are located in the ‘Client Tools’ folders and can be freely distributed to anyone.
They are small and do not require any installation procedure so they can even be run at an arbitrary location from a floppy disk.Additional Features
The VME Gateway Security Client (GSC) is used for encrypting all outgoing messages from the users computer up to VME Gateway automatically and transparently.
The Client intercepts all outgoing SMTP traffic and S/MIME encrypts it using a single X.509 certificate.
The destination VME Gateway identified the message and automatically decrypts it its private key and then processes it normally according to the rules and global options.
The GSC should be used when the communication between the client computer and the VME Gateway Wall machine is insecure (such as a traveling user which connects to the internet for sending messages and is not using VPN).Additional Features
VME Gateway Deployment (Corporate)
Creating a new rule
You can click the icon to open the E-mail Addresses/Groups selections to help you select the proper e-mail addresses and groups:
To search the directory, enter a search string (such as bob*) and click the ‘Search’ button. The results will be displayed in the ‘Results’ list. Double clicking an item in this list will pop up a dialog with all available information retrieved from the directory server.
To add an e-mail address/group, select the e-mail addresses and click the ‘Add’ button. Multiple addresses can be selected and added. Alternatively, type in an e-mail address in the ‘E-mail’ field and click the ‘Add’ button.
To remove an e-mail address or group select it in the selected Users or Selected groups list and click the ‘Remove’ button.
If this option is set then messages without attachments will never match this rule.
Bigger/Smaller than XXX KB
Specify the size criteria. The size is checked against each attachment separately and not by the accumulated sizes of all the message attachments. If the message contains multiple attachments the rule is applicable when at least one attachment matches the given size.
And are of type/ And are not of type
Specify the attachment type. Attachment types are defined using the Attachment types window in the object tree.
Note: If both size and type are specified then a single attachment must match BOTH criteria.
Log Message action
To specify the Add/Remove recipients action, select the ‘Add/Remove recipients’ item from the menu.
The following dialog will be displayed:
VME Gateway must remove the digital signature on a message that needs to be altered. (For example, when notes are added or for encryption).
The Encryption parameters are used for rules which have the Main Action set to ‘Encrypt’ or for the Base and Template rules.
How convenient is this rule to the recipient.
The encryption laws in the recipient’s country/state.
Does the recipient have client software or one of the available decryption clients in order to decrypt symmetrically encrypted messages.
Does the recipient have an X.509 certificate for S/MIME operations.
How will the recipient receive the encryption keys in an insecure channel.
For each option, the rule can specify which action to take if and only if that action has not already been set to ‘On’ or ‘Off’ by a previous rule.
This option wraps the entire e-mail messages (including HTML and attachments) into a single packed encrypted file.
Encrypt Message TextCheck this option to encrypt the message text
Encrypt AttachmentsCheck this option to encrypt the message attachments
Encrypt Attachments as Self-ExecutablesCheck this option to convert the encrypted file/s to an EXE program that can be executed on the recipients Windows machine.Symmetric
Do Not Encrypt - This assumes that the client has selectively encrypted the confidential parts of the message and has decided to leave the rest clear. When VME Gateway recognizes that parts of the message are encrypted the rest of the message remains clear text.
Encrypt All Clear Parts - Messages transferred from the sender to the recipient are encrypted, even when sent completely clear. Partially encrypted messages sent by the sender will be encrypted as well.
Encrypt Everything - All messages going from the sender to the recipient will be. This is used when the client’s encryption may be unreliable, and the administrator wishes to safeguard e-mail using your official engine and key.