Security Basics mailing list archives
Re: Email Encryption
From: Gregory Boyce <gregory.boyce () gmail com>
Date: Wed, 14 May 2008 12:07:10 -0400
On May 14, 2008, at 4:08 AM, pete.hill () sit-up tv wrote:
Hi there,I am currently running through a PCI program at my company and am looking for recommendations on an email encryption tool.We currently use a licensed version of Winzip, but I have heard that this may not be up to job as far as passing a PCI DSS audit is concerned.
Email encryption wouldn't generally be in scope for a PCI audit unless you're emailing credit card info. In general your best bet would be to avoid this.
If you do need email encryption s/mime or PGP are generally the way to go.
Is Winzip good enough? and if not, what should we be using to get a pass on this?
It sounds like you are actually looking for file encryption, but the files maybe transported via email as well. PGP offers file encryption as well.
Current thread:
- Email Encryption pete . hill (May 14)
- Re: Email Encryption Preston Kutzner (May 14)
- Re: Email Encryption Adriel Desautels (May 14)
- Re: Email Encryption m0untainrebel (May 14)
- RE: Email Encryption Daniel I. Didier (May 14)
- Re: Email Encryption Gregory Boyce (May 14)
- RE: Email Encryption TBarnhart (May 14)
- Re: Email Encryption Adriel Desautels (May 15)
- RE: Email Encryption TBarnhart (May 14)
- Re: Email Encryption Ansgar -59cobalt- Wiechers (May 14)
- <Possible follow-ups>
- Re: Email Encryption khushbu . jithra (May 15)
- Re: Email Encryption khushbu . jithra (May 15)
- Re: Email Encryption Adriel Desautels (May 16)
- Re: Email Encryption Preston Kutzner (May 14)