Email Encryption & Data Loss Prevention (DLP) – Protect Sensitive Information

Email Encryption Service – Protect Valuable & Confidential Messages. Forced policy encryption by domain, sender, recipient or content

Spambrella Email Encryption provides a cloud-based email security solution that can prevent confidential information or intellectual property from being intercepted.

With today’s online and mobile society, confidential data is always on the move and always at risk. With one innocent click, years of product research, valuable intellectual property, and billions of dollars in account data can be lost through a simple email message. Mitigate the risks by encrypting your mail messages with Spambrella Email Encryption, part of our outbound email protection service. Our Security-as-a-Service solution helps organizations protect valuable information easily and economically, maintain a stronger business, and comply with privacy regulations.

Spambrella’s Email Encryption safeguards your confidential data and enables you to maintain compliance with regulations requiring encryption of sensitive data. A cloud-based solution, Spambrella Email Encryption delivers unparalleled scalability, eliminates the burden of managing a solution, and empowers your mobile workforce to send and receive encrypted emails ubiquitously from any email client.

Easy to implement, manage, and use, Spambrella Email Encryption is a scalable, reliable, and secure service that protects your most valuable and confidential data. Add the ultimate message protection for you and your customers with Spambrella Email Encryption.

SaaS Email Encryption Technology

The Spambrella SaaS Email Encryption is built with trusted and proven standards-based encryption technologies. It removes the difficulty of installing and managing current solutions and is easy to use.

  • Encryption technologies used include PKI, S/MIME, X.509 certificates, 3DES, AES-256, and 1024- bit RSA keys (with MDS and SHA-1 encryption algorithms). The encrypted message web portal utilizes a 128-bit secure sockets layer (SSL).

Spambrella encryption service NIST 800-171 compliant?

Spambrella has a documented Information Security Program that is aligned with the requirements of NIST 800-53 and ISO 27001. By being aligned with NIST 800-53, it is also aligned with NIST 800-171 (DFARS), which is a subset of NIST 800-53. While our commercial offerings are not certified to be compliant with these standards, our security controls broadly address the requirements of these frameworks.

Our security controls address Physical and Logical access, Physical and Personnel Security, Change Management, Software Development, Encryption, Continuous Monitoring, and Third-Party Vendors. Services are hosted in Tier-3 co-location facilities.

Proofpoint owns and manages all server, storage, network, and security devices that host the Services in locked, dedicated cages in those facilities.

What is Sextortion?

Using Zix Encryption with Spambrella

What’s the Difference Between Spear Phishing and Whaling?

Features

Benefits

Protect your sensitive email messages—while ensuring your affiliates, business partners and end users still have seamless access to those secured messages on their computers or mobile devices. Our email encryption solution provides valuable assistance in the following areas:

Policy Enforcement

Ensure that all email encryption policies are centrally managed and enforced at the gateway, before distribution—whether they are driven by regulatory compliance, data security or internal corporate concerns. Rely on a convenient graphical interface provided for defining enterprise email encryption policies, which can be triggered based on structured, unstructured or keyword/regular expression content matches, identified by our DLP engine. The end user is not involved in any decision-making, but simply presses “Send.” The email is then automatically identified and encrypted or not, depending on policy requirements.

Key and Certificate Management

Eliminate the administrative overhead associated with traditional email encryption services. Our keys are generated per message copy, so you can revoke access to single messages—without ever worrying about keeping track of all the keys.

Simplify Storage and Backup

Simplify the email storage and backup overhead that is typically associated with email encryption software with our key service that handles all key management functions using our next-generation software-as-a-service (SaaS) infrastructure.

  • Security you can trust with unique integration with Proofpoint
  • Encrypt outgoing email with minimal administration
  • Integrate data loss prevention strategies
  • No hardware/software to maintain or warranty renewals to deal with
  • Unlimited secure protection for both original message and replies
  • Ensure compliance with data privacy and retention regulations

 

FAQ's

Visit our fully searchable Knowledge Base for FAQ's and detailed service information.
DLP – Data Loss Prevention FAQ’s

Frequently Asked Questions (FAQ)

Q. What packages is Data Loss Prevention included in? 

  • Data Loss Prevention is included in the Business, Advanced and Professional package.

 Q. How is Data Loss Prevention enabled? 

  • Data Loss Prevention can be enabled or disabled on the Spambrella features page.
  • Data Loss Prevention is disabled by default.
  • At present, only Spambrella Admins and Spambrella Staff can enable the DLP feature.

Q. Do the logs report on Scan information? 

  • No. Logs will only indicate which filter caught the message but it will not identify the Smart Identifier or Dictionary.

Q. Can a user see the terms included in the dictionary? 

  • No, not as this time. Please enquire with support.

Q. Does Spambrella support custom dictionaries?

  • No, not as this time although custom content filters can be created.

Q. Is Data Loss Prevention available for customers on trial? 

  • Yes.

Q. How do I know Data Loss Prevention is enabled?

  • On the Company Settings main page: Data Loss prevention will state “Active.”
  • Go to the Filters. When creating a filter, two new items appear:
  • Smart Identifier Scan
  • Dictionary Scan

DLP – Dictionary

For additional questions, please see the DLP FAQ.

Creating a Filter that uses a Dictionary

  • Once logged in, click on the Filters tab.
  • Click on the Add New Filter button.
  • Select the direction of mail flow that the filter should be applied.
  • Enter a name for the filter and click on the “Continue to builder” button.
  • Select the scope that the filter should apply to.
  • Choose “Dictionary Scan” from the drop-down.
  • Click the “Manage” link. A pop-up window will appear.
  • Check the Smart Identifers that you wish to scan for. You may choose as many as you wish.
  • Click on the Close button.
  • Choose the appropriate action to take when the filter is identified. For example, select Quarantine.
  • Click the Save button.
DLP – Smart Identifier

For additional questions, please see the DLP FAQ.

Creating a Filter that uses a Smart Identifier

  • Once logged in, click on the Filters tab.
  • Click on the Add New Filter button.
  • Select the direction of mail flow that the filter should be applied.
  • Enter a name for the filter and click on the “Continue to builder” button.
  • Select the scope that the filter should apply to.
  • Choose “Smart Identifier Scan” from the drop-down.
  • Click the “Manage” link. A pop-up window will appear.
  • Check the Smart Identifers that you wish to scan for. You may choose as many as you wish.
  • Click on the Close button.
  • Choose the appropriate action to take when the filter is identified. For example, select Quarantine.
  • Click the Save button.

 Smart Identifiers

A smart identifier is a pre-defined regular expression used to locate specific content in an email such as a Credit Card number of Drivers License Number. 

Email Encryption

Encrypting an email

If you wish to make use of Spambrella Encryption service you must be on Advanced package or above.

This feature then needs to be enabled. To enable please go to:

  • Click on Features
  • Tick check box Enable Email Encryption
  • Click Save

To send an outbound email so that it is encrypted:

  • Click on Company Settings
  • Click on Filters tab
  • Click on Outbound tab
  • Click on New Filter button
  • Choose a name for the filter (i.e., Outbound Encrypted)
  • Click on the Continue button
  • Set scope as Company
  • If you wish to send an encrypted email based on a subject keyword set your logic as: If Email Subject Contains Any Of [encrypt]
  • Choose “Encrypt” from drop-down list of actions
  • Click Save.

This will encrypt an outbound email if the subject contains the keyword [encrypt] i.e. included in the square brackets.

N.B. You must use Spambrella to filter your outbound email. If using Spambrella to filter only inbound email this feature will not work.

Deployment Phases and Rollout

Situation – The console has four phases of deployment. During your rollout/deployment, you want to know what order to deploy each phase and what each phase includes.

Solution – Manage your Essentials console in the following sequence.

  • Activation
  • Pilot
  • Rollout
  • Maintenance

For the smoothest deployment possible, you should go through the following four phases:

1. Activation

This gives you access to the Administration Console, with one administrative account, one organization, and one server.

2. Pilot

Add a small group of users and possibly additional administrators. Set up your service.

3. Rollout

Using LDAP Discovery, add your remaining users and domains, and set the filter configurations and access levels as required.

4. Maintenance

On-going support of your users and servers. This may require adjusting filter settings, managing users and domains, and adding new or configuring existing email servers.

Encrypting An Email – Proofpoint

If you wish to make use of Spambrella Encryption service (Proofpoint Secure Share) you must be subscribed to the Advanced or Professional email security service packages. Please visit the email security service page to review the plans available.

Enable Email Encryption Service

  • Navigate to Administration / Account ManagementFeatures
  • Tick check box – Enable Email Encryption
  • Click – Save

How to create the standard subject filter with [encrypt]

  1. Under Security Settings, click Email.
  2. Click Filter Policies.
  3. Select the Outbound tab.
  4. Click on New Filter.
  5. Choose a name for your filter (e.g. Encryption – subject).
  6. Click Continue.
  7. Ensure Scope is set to Company.
  8. If statement
    1. First parameter: Email Subject
    2. Second Paraemter: CONTAIN(S) ANY OF
    3. Text box: [encrypt]
  9. Do statement
    1. Select Encrypt
    2. Click ADD ANOTHER ACTION 
    3. Select Strip Subject Line Encryption Terms
  10. Click Save.

Email Encryption

Using Email Encryption to Protect Your Business

Email Encryption – End User

Resources

Looking for resources you cannot find? Try the Knowledge Base or get in touch...
Customer Admin Guide
Download
Partner Admin Guide
Download
Office 365 Setup Guide
Download
Solution Overview
Download
Schedule Demo Contact Sales Request Quote Free Trial

    One Step Closer To Greater Protection





    Spambrella requires all submissions of its website forms to be validated in accordance with the privacy policy

    Click here to accept our privacy policy terms before clicking submit below...

    Latest blog posts

    • On May 25, 2023
    TA569: SocGholish and Beyond

    Key Takeaways TA569 leverages many types of injections, traffic distribution systems (TDS), and payloads including, but not limited to, SocGholish. In addition to serving as…

    Read more
    • On March 7, 2023
    API Email Security Weaknesses

    API email security services, like any technology, can have weaknesses that can potentially compromise their effectiveness. Here are some common weaknesses of API email security…

    Read more
    • On February 8, 2023
    Emerging Cyber Security Attacks and Threats

    Cybersecurity is an ever-evolving field, and as technology advances, so do the methods used by cybercriminals to steal sensitive information and cause harm. In order…

    Read more
    • On February 8, 2023
    Business Email Compromise Threats

    Business email compromise (BEC) is a growing threat to businesses of all sizes. In a BEC attack, an attacker impersonates a senior executive or a…

    Read more