David wrote: > 2) All kinds of regulations in the US like HIPAA and financial > regulations will force businesses to at least pretend to control > outflowing information. Unfortunately, doing this effectively means > prohibiting tools like PGP for encrypted e-mail. :-(
Alternatively, implement an encryption policy which requires that all encrypted messages must also include a corporate key, so that the filtering system (and possibly an archiving system as well) is capable of decrypting and checking messages. How you protect the passphrase for this key when it is used within MIMEDefang is a concern, but as the mail filter needs to be a secure system in the first place, it is not an issue I see as being major. I need to use PGP, I need to be able to recover encrypted messages, and I need to be able to enforce a sensible policy, and I've achieved all of these with MIMEDefang and GnuPG. There is no other solution on the market as far as I am aware. Best Wishes, Paul. __________________________________________________ Paul Murphy Head of Informatics Ionix Pharmaceuticals Ltd 418 Science Park, Cambridge, CB4 0PA Tel. 01223 433741 Fax. 01223 433788 _______________________________________________________________________ DISCLAIMER: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to which they are addressed. If you have received this email in error please contact the sender or the Ionix IT Helpdesk on +44 (0) 1223 433741 _______________________________________________________________________
_______________________________________________ Visit http://www.mimedefang.org and http://www.canit.ca MIMEDefang mailing list [email protected] http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
