Tag: LDAP directories

02 Dec 2014

OneWorld, Filling the Gaps

No certificate? No problem.

With all the data breaches and cyber threats that we have witnessed lately, it’s no wonder that cyber security  is a hot topic for governments, enterprises of all sizes and last but not least, consumers.

It is interesting to see how some governments in Northern Europe have taken initiatives to protect electronic privacy and have issued public key certificates to all their citizens, so that they can have a secure, unique online identity.  These certificates are used for remote authentication, digital signature, e-commerce transactions including banking, and email encryption.

The consumerization of email encryption is happening and this is why more and more governments are creating directories of certificates to ensure secure online information exchange. Email encryption plays a very important part in any data security strategy, however, only a few solutions are flexible enough to transparently integrate into users’ everyday electronic communication.

Owen Barder from the Centre for Global Development comments on email encryption in Denmark in his blog entitled “Encryption and the King of Denmark”:

“I know very few other people who are set up to receive encrypted emails, and hardly anybody ever sends me anything encrypted. Why is that? It isn’t that difficult to set up GPG. One reason is that there is apparently no way to go through all your contacts automatically and check if they have published a public key that you can use to send them messages.  So if my friends have public keys, I would have to find that out manually”.

You definitely don’t have to find the keys manually. OneWorld, our email encryption solution, can be configured to do all that for you. With absolutely no user intervention, OneWorld detects the availability of a certificate in the local directory and publicly available LDAP directories.

No certificate? No problem. OneWorld will find an alternative delivery method for the encrypted message.

When a user sends an email, OneWorld looks up the published key for the Recipient and encrypts with it, so that the message can be decrypted once it is received. The Sender does not need to have any certificates, keys, or software, since the encryption occurs in OneWorld. In case the published public key for the recipient does NOT exist, OneWorld will automatically switch to either a Web Portal or a PDF delivery method.

The same is true for looking up PGP keys. OneWorld can deliver encrypted messages and data right to the recipient’s inbox with their known PGP certificates. The sender does not need to have any certificates, keys, or software. OneWorld will find the PGP certificates in the local directory and publicly available LDAP directories.

The beauty of OneWorld is that it is all about flexibility and interoperability. It is like a Swiss army knife, it can be configured to look up various directories and to establish the best method of delivery based on sender preference and the real-time security context. As we mentioned in a previous blog, OneWorld has the ability to check and adapt in real time to the surroundings in order to deliver the message securely.

19 Jun 2014

Cloud Security Accelerates to a $9 Billion Market

Cloud Security MarketAccording to CRN, Cloud Security is going to experience tremendous growth by 2019, reaching the $9 billion mark. This is no surprise as most security vendors are now offering a Cloud or hybrid solution in an effort to improve total cost of ownership, scalability and ability to manage change.

With this tremendous growth comes the high rate of adoption of cloud based email security.  CIOs and CSOs are looking for easy to deploy and cost effective solutions to secure internal and external email and bulk email communications to customers and business associates.

Echoworx has brought a number of Cloud solutions to its customers. An encrypted message can be delivered to a wide variety of recipients through a secure web pickup portal, the simplest and most universal method of delivery. Because the secure web pickup portal technology runs completely in the cloud, customers can use any device and do not have to worry about how to manage and operate the platform to receive their encrypted messages.

With OneWorld, enterprises can now take their PGP keys to the Cloud and easily interact with business partners in the Echoworx Could, without the need of a local PGP Universal Server and the complexity of managing it.  With Echoworx operating the LDAP service, OneWorld simplifies the management of your PGP keys. It is all done for you in the Cloud and therefore significantly reducing the total cost of ownership for your PGP implementation.

According to analyst MarketsandMarkets, quoted by CRN “even though there are various on-premise solutions available for all types of security, cloud security has become the prime importance for businesses who want to reduce Capex and support a growing remote workforce.”

13 Mar 2014

Manage Your PGP Keys in the Cloud

Looking to avoid dealing with PGP keys and managing your own PGP Universal Server? With the latest enhancements of Echoworx’ OneWorld policy based encryption platform, you don’t have to. This solution allows customers to virtually manage PGP keys and easily interact with business partners using PGP in the Echoworx Cloud.

The platform offers seamless sending and receiving of PGP encrypted messages in the Cloud with direct PGP key lookup from external and internal LDAP Directories.  Virtual keys are also automatically published to the OneWorld Directory (LDAP) allowing external customers to easily find and send PGP encrypted messages to OneWorld customers. The solution is therefore efficiently configured to exchange PGP keys for the sender and recipient.

Echoworx provides transparent “virtual PGP’ key management for customers within the organization, eliminating the need for hardware, desktop or server software and the complexity of dealing with it.