HPE SecureMail

One Solution for Desktop, Web, Mobile, Cloud, Applications, and Automation


Achieving end to end email security

Protecting sensitive emails without impacting the user experience

In regulated industries such as healthcare and financial services, consumer privacy and data security have become a top priority for most IT departments. The regulations and penalties for non-compliance seem onerous but pale in comparison to the loss of trust from customers when a security breach does occur. Email is the de facto way for how organizations communicate especially outside their firewalls. If not properly protected, email can be one of the most vulnerable systems in a company’s infrastructure. The challenge is to implement a secure email system that complies with all regulations and is easy to integrate with existing business systems.

Flaws of traditional email encryption

Most traditional email encryption approaches must rely on multiple delivery methods resulting in security gaps from messages being split. Legacy S/MIME and PGP PKI are complex for IT and incompatible with Gmail, Yahoo, and Android. Proprietary Symmetric Key requires complex key database management, and can also lead to data loss if a key is corrupted. Proprietary Webmail suffers from end-user confusion with multiple inboxes, blocked or expired links, and no access to contacts.

HPE SecureMail Solution

HPE SecureMail is the best of breed end-to-end encrypted email solution available for desktop, cloud, and mobile that is scalable to millions of users, while keeping Personally Identifiable Information (PII) and Personal Health Information (PHI) secure and private. This level of secure email communication gives organizations the confidence to transition from paper to electronic communication.

Single solution for desktop, cloud, and mobile—HPE SecureMail enables decryption on desktop, Web, and mobile, by both internal and external users and supports scanning and filtering for all inbound and outbound email (see Figure 1).

Data-centric protection for email and attachments—HPE SecureMail encrypts data and attachments so that if a security breach does occur, the encrypted content is of no value to the attacker. Attachments are stored on internal servers, not external third-party servers.

Stateless key management—The underlying key management system is arguably the most important factor governing the performance and quality of experience of a secure email system. Using HPE SecureMail’s standards-based Identity-Based Encryption (IBE), secure messages have no keys to manage or store. HPE SecureMail requires minimal administrative or infrastructure support and allows for scale across global enterprises.

Tight integration with existing enterprise infrastructure and investment—HPE SecureMailseamlessly integrates with essential email infrastructure such as anti-virus, anti-spam, content filtering,and mail archives. Because HPE Security – Data Security uses IBE, there is no need for complicated Alternate Decryption Keys (ADKs) required by legacy PKI and OpenPGP systems.

eDiscovery—HPE SecureMail provides multiple options for internal supervisory control andpolicy-based archiving of secure mail. Messages are stored and managed like regular mail.With the ability to index, search, view, and discover data inside secure email, HPE SecureMailsimplifies responses to requests during audits, investigations, and litigation.

Flexible deployment options—HPE SecureMail supports on-premise, in the cloud, orhybrid deployments, as well as cloud email services such as Office 365. The solution alsoworks seamlessly with Outlook, Exchange, Blackberry Enterprise Server (BES), mobiledevice management (MDM), and business applications and websites. HPE IBE offers a cleanseparation between encryption and authentication, meaning it can support a variety ofauthentication methods, including Active Directory, LDAP, portals, and Web access managersto name a few.


Integrated with your existing email workflows for a simple user experience

In highly regulated environments such as healthcare and financial services, compliance is mandatory but difficult for companies to enforce. This is especially true with email because end-users strongly resist any changes to their standard email workflow. HPE SecureMail delivers a simple user experience across all platforms including computers, tablets, and native mobile platform support with full capability to send secure, originate, read, and share messages. Within Outlook, iOS, Android, and BlackBerry, for example, senders can access their existing contacts and simply click a “Send Secure” button to send an encrypted email. The recipient receives secure messages in their existing inbox, just as they would with clear text email.