Blog

Wax On, Wax Off – Why and when you need to encrypt and decrypt

Seclore Data-Centric Security Platform enables organizations to leverage existing investments in security and compliance.  Email Security solutions like Secure Email Gateways (SEG), Data Loss Prevention (DLPs), Cloud Access Security Broker (CASB), integrated with Seclore, are now able to go beyond the binary (allow, block) response and bring in a third dimension – protect and share – to add increased value to an organization’s security.

As per Gartner’s Email Security Market Guide, by 2023, 65% of organizations will inspect their intradomain email traffic for advanced threats. Based on the content inspection of unencrypted email and attachments, Email Security solutions can easily invoke Seclore to encrypt them. However, email systems have been rather short on security so far while processing already encrypted documents and emails.  A SEG or DLP/CASB solution would require the ability to look into the contents of an encrypted file to run discovery, identification and then determine the non-binary (allow, block, protect) response to an incident.

Enter, Seclore Decrypter for Email
Seclore Decrypter for Email provides just that – an ability to gain secure access to decrypted email content so that a security solution can run the configured discovery and identification rules. This new feature strengthens the partnership with Email Security solutions and provides transparent and comprehensive security to organizations.  Through the Decrypter for Email, organizations can now claim compliance to regulations as DLP and CASB tools can discover, track and audit files now – both unprotected and Seclore encrypted.

Universal Decrypter
The Seclore Decrypter for Email is truly universal — it works with any email security solution as well as:

  • Any DLP: e.g., McAfee, Forcepoint, Symantec
  • Any CASB: e.g., McAfee MVISION, Symantec Cloud SoC
  • Any on-premises Secure Email Gateway (SEGs): e.g., Proofpoint, Cisco Iron-Port
  • Any email content inspection solution:g., Exchange Online

The Decrypter for Email requires no end user dependency or enablement and is independent of the user device or email client installed on the user’s device. Just deploy it in your email infrastructure and gain control over the encrypted content that gets exchanged within employees and with external partners. The Seclore Decrypter also works in conjunction with Seclore’s Email Auto-Protector (EAP). The EAP ensures secure external collaboration by automatically protecting emails before they are sent from the organization.

How does it work?
Decrypt for Content Inspection

Before the Email Security solution scans the email body and attachments, the Email Gateway redirects the email to Seclore Decrypter for Email. Seclore decrypts the email, which the Email Gateway then directs the Email Security solution to the Discovery tool and acts on it.

Re-Encrypt to Send Out to Recipients

If the emails need to be sent out to recipients (and not blocked by DLP), the Decrypter re-encrypts the emails with the same policies are defined earlier. The Email gateway ensures that the Encrypted email and attachments is sent to the recipient.

Decrypting and re-encrypting are transparent to the end-user. The recipient will receive the email with the same security that was placed on the document initially.

Seclore Decrypter for Email is the latest feature to Seclore’s Email Encryption Plus. Decryption is the last piece in the security puzzle to enable organizations to have a complete and comprehensive Email Security solution. Plus, tracking and monitoring encrypted email and attachments, ensure strong security and adherence to regulatory compliance.

Related Posts