HTTPS in e-mail security Solutions

Source: Internet
Author: User
Tags mail account ssl certificate wildcard ssl wildcard ssl certificate


E-Mail has become one of the most important and indispensable communication tools for modern people, especially enterprise applications. However, you may not know that all e-mail systems are transmitted in clear text, that is to say: each of your important messages are in the "postcard" way on the internet, it is because the e-mail content has very important personal confidential information or confidential business information to make illegal means to steal the content of the mail, The e-mail system faces four security threats: tampering with message content and forgery of legitimate identities

Current security issues with e-mail

(1) spam is rampant, which seriously affects the normal use of e-mail. This has aroused the attention of various e-mail service providers and email client software vendors, and has adopted technical measures to intercept and filter spam;
(2) rampant fraud and fraudulent e-mails, fraudulent URLs in the mail are often fooled by ordinary netizens who are not able to identify, while the popular email client software and web-logged e-mail service providers do not provide effective solutions in this regard, resulting in a variety of counterfeit banks, securities, E-commerce Email is constantly hurting users;
(3) The message attachment is malicious code, the user just clicks the mail attachment on the recruit, this also seriously affects the user to use the e-mail security, unless the user computer installs the anti-virus software to be able to recognize and avira;
(4) e-mail content "Bare Ben", has become the first major security risks, various "monitoring door" event exposure, making encrypted email content is becoming the first need.
To solve these problems thoroughly, we must take appropriate technical measures from e-mail client software, mail server security, e-mail service provider and so on.

e-Mail Security Solutions

For the above 4 issues, easy-dimensional letter combined with digital certificates and mail vendors to give the following complete solution:

1, the joint related manufacturers to launch secure e-mail client software, to achieve
(1) Intelligent identification of junk mail;
(2) Using cloud killing technology to identify the email address in real-time is a fraudulent site;
(3) Using cloud killing technology to identify the mail attachments in real time is malicious code.

2, with Symantec, GeoTrust, GlobalSign and other global server SSL certificate and client digital certificate combined with the entire end-to-end e-mail encryption solution, to ensure the confidentiality of e-mail content. As shown in the following:

650) this.width=650; "src=" http://www.evtrust.com/solution/images/securemail.jpg "alt=" secure e-mail Solution "/>

e-mail content on the Internet is transmitted in clear text, the sending process is: the sender to send to the recipient's e-mail to their e-mail server can be sent by their own e-mail server to the recipient's e-mail server, Recipients are required to collect e-mail from their e-mail server. We

PKI-based server-side SSL certificates, client digital certificates, and code signing certificates are recommended to ensure full end-to-end security of e-mail. Includes: (1) The e-mail server deploys an SSL certificate to ensure that the message information is secure when the user logs on to the mailbox. Note: Not only the account login page to deploy SSL, the user login and then become the HTTP plaintext, which can only guarantee the user password security, and does not guarantee the message content security. Gmail and Hotmail are already full-time HTTPS encryption, (2) Use client certificate for WEB login strong authentication, replace insecure username and password authentication; (3) Mail receiving server (POP3/IMAP) and outgoing server (SMTP) Deploy SSL certificates to ensure link encryption, (4) e-mail encryption and digital signatures using client certificates for WEB or/and e-mail client software, and (5) Signing password security controls with code signing certificates to ensure that the user's account password is not intercepted by the user's computer's malicious code before it is transmitted encrypted.

In the above technical measures, (1) (3) to ensure that from the sender's computer to the sender's e-mail server on the transport link between the WEB and email clients to send and receive e-mail messages are SSL security encrypted e-mail content, it is not possible to be illegally stolen and tampered with; measures (2) is to use the client certificate to achieve identity authentication, thus ensuring that the legitimate user is using this e-mail account, and measures (4) to ensure that the e-mail from the sender's computer to the recipient's computer's entire transmission link is encrypted transmission, it is not possible to be illegally stolen and tampered with. Only by taking the above 5 technical measures to ensure the full security of e-mail communication, the "postcard" e-mail service is now a "speedpost" e-mail service to load the user's letter into a thick, sturdy envelope.

Recommended SSL Certificates

We recommend that you use the GeoTrust branded enterprise Authentication Level-True BUSINESSID SSL certificate that supports all browser servers because:
-True Businessid brand awareness: Through GeoTrust's famous brand can enhance the user's trust to the gateway
Dynamic Seal technology: through the GeoTrust proprietary dynamic signature technology, to ensure that the site identity can not be copied and fake.
Support for wildcard SSL certificate and multi-domain SSL certificate, good support mail system multiple subdomains require an SSL certificate.
Easy installation
Compatible with strong compatibility with more than 99% of browsers and SSL VPN gateways.


HTTPS in e-mail security Solutions

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.