Solution: Email Security

Problem

More and more businesses are using E-mail for critical business processes such as placing orders with vendors, providing employees with confidential information, and discussing plans with clients and business partners.

Unlike a fax or mail, it can be difficult to trace emails, to ensure that they were really sent by the purported author, and to protect those emails from being intercepted and read online.

Today, E-mail clients, such as Microsoft's Outlook, can ensure authenticity and privacy using public key cryptography and digital certificates to sign or encrypt data.

Unfortunately, key and certificate generation and management is complex. If keys or certificates are stolen, security is compromised. If they are lost, important information may become inaccessible.

Solution

Smart card and USB tokens are a highly secure and convenient way of storing keys and certificates that can be used for E-mail security. Working together with the email application, the smart card can be used to encrypt and sign email content and attachments using the keys on the smart card or USB token.

Benefits

Smart cards are tamper resistant, protecting against the unauthorized duplication of certificate keys. Smart cards and tokens are portable, allowing E-mail signing and encryption in different locations and computers.

• Easy to deploy: With Smart Cards and Tokens the IT Manager can handle the key generation and certificate requests on behalf of the end user. This eliminates complex authentication and self enrollment processes for the end user.
• Two factor authentication: A user needs both the physical Smart Card or USB Smart Token and the Smart Card PIN code in order to authenticate. This protects against misuse even if the card is lost or stolen.
• Supports Most Email Clients: Including Outlook, Outlook Express, Netscape Messenger, Mozilla Mail, Novell Groupwise 6, Baltimore MailSecure and Lotus Notes
• Portability: Raak Smart Cards and Tokens enable use of many devices in other locations - their digital certificate and cryptographic data travel with them.
• Security against computer vulnerabilities: With normal certificates the private key associated with that certificate is stored on the computer, where it is vulnerable to attacks and security flaws. With a Raak digital certificate, the private key never leaves the smart card. All security operations occur on the card itself using the powerful cryptographic co-processor.
• Security against misuse: Unlike passwords or regular digital certificates, smart cards and tokens are secured against duplication. This makes smart cards indispensable for service providers that need to ensure the efficacy of the authentication process such as medical information suppliers and BtoB services.