Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Security Basics: Re: Email Encryption

Re: Email Encryption

From: Preston Kutzner <grdnwsl_at_marketingresources.com>
Date: Wed, 14 May 2008 11:09:16 -0500

On 14 May 2008 08:08:07 -0000
pete.hill_at_sit-up.tv wrote:

> Hi there,
>
> I am currently running through a PCI program at my company and am looking for recommendations on an email encryption tool.
>
> We currently use a licensed version of Winzip, but I have heard that this may not be up to job as far as passing a PCI DSS audit is concerned.
>
> Is Winzip good enough? and if not, what should we be using to get a pass on this?
>
> Many thanks
> Pete
>
More information would be handy to help give a reasonable answer. What
OS are you using? What MUA are you using? What are you trying to
encrypt in your email? If you're using WinZip currently, I would
assume you're just looking to encrypt the attachment. Are you also
looking to be able to encrypt (and sign) the entire email message? Is
compression necessary for your application?

As far as email encryption is concerned, typical methods for this
application usually consist of either SSL certificates or PGP/GPG
encryption.

Received on May 14 2008
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]