Clash of the e-mail encryptors
E-mail security solutions from PGP, PostX, Sigaba, and Tumbleweed compete on flexibility, power, and ease
Sigaba provides a plug-in for all the major Windows e-mail clients that handles encryption and decryption automatically, much like the one found in PostX. The plug-in handles user authentication back to the Sigaba keyserver and, like SendAnywhere, requires users to be online in order to encrypt and decrypt messages. Opened messages can be saved in the clear for offline reading.
The Sigaba Vault is Sigaba's method for delivering secure mail through a Web portal. Similar to PostX’s and Tumbleweed’s online portals, Sigaba Vault provides a way to deliver encrypted messages to end users without relying on client-side software; recipients simply click a link directing them back to Sigaba Vault, where they log in via SSL with a username and password. Vault presents all of their e-mail to them already decrypted. Like PGP Web Messenger, Sigaba Vault does not allow users to create new mail or organize messages in folders.
A neat feature not found in the other products is the Affiliate Gateway. The Gateway installs on a business partner’s server and provides authentication, encryption, and policy enforcement, allowing you and your business partner to easily exchange encrypted e-mail without requiring changes to their mail system. No client software is needed and all mail is decrypted at the gateway.
Rule sets and lists in Sigaba allow you to fine-tune your mail flow. You can define specific inbound and outbound policies based on users, domains, and message subject, as well as on header tags and strings found in the body of the message. Sigaba also supports the use of regular expressions in search strings for even more control.
Tumbleweed Secure Messenger 6.0
Tumbleweed Secure Messenger doesn’t miss a beat when it comes to mail security, providing all of the necessary pieces to the secure messaging puzzle. Secure Messenger has a very powerful and flexible policy engine that allows you to create rules based on domain, message, and user, among other things. Secure Messenger also performs virus scanning, spam filtering, and content filtering. Secure Messenger can even perform weighted word analysis to help detect messages that might fail to comply with HIPAA or other regulations.
Secure Messenger provides universal message delivery, allowing end users to receive messages using their desktop mail client or Web-based mail system. E-mail is encrypted using AES or 3DES, with S/MIME and TLS available for site-to-site protection. To speed up the enrollment of business partners, you can even let Secure Messenger harvest S/MIME certificates on inbound messages to auto-associate users and keys.
The heart and soul of Secure Messenger is the policy engine. There are so many different criteria that can be applied to a message, there is realistically no situation that Secure Messenger cannot handle. Policies can be applied to either the sender or recipient, and messages routed or otherwise manipulated by the policy engine. For example, I created a policy to catch inbound messages that contained executable files. When triggered, the file attachments were removed and text was inserted into the body of the message alerting the recipient that an executable file was stripped. Secure Messenger then placed a copy of the original message in an archive and tagged it "Executable" for later inspection.