Important: Do not make these changes until you have received a Welcome Email from EncryptTitan.  Making these changes prior to EncryptTitan deployment will cause email delivery issues.


TABLE OF CONTENTS

 

Using the keyword /secure/ to encrypt messages by leveraging Transport Layer Security (TLS) when available.  



The keyword /secure/ can be used when the sender does not want to require that a recipient log into the secure portal to view a secure message, while meeting  most regulatory encryption requirements.


There are two key requirements for TLS delivery; EncryptTitan will automatically test for the requirements listed below.


  1) The recipients email server must be able to negotiate TLS 1.2 or above, using at a high cipher suite.

  2)  The digital certificate, that is used to facilitate TLS delivery, must match the hostname of the recipients email server.


If  Encrypt Titan is able to validate both requirements, the encrypted message will be delivered to the recipient's mailbox without requiring the recipient to take any additional steps to read the message. The email will contain a banner in the body of the message to let the recipient know that the message was delivered securely.

 



Creating the SpamTitan content filter for the keyword /secure/.


/secure/   -  when included anywhere in the subject line of the message will be encrypted and delivered over TLS 1.2+.  When TLS fails validation, the message will be sent to the secure portal.



Note: This is a global change and will affect all customers on a multi-tenant gateway. 

When adding a content filter for the keyword /secure/ you will need administrative access to your SpamTitan gateway.


Go to the Content Filtering page and add a new content filter.


Next,


1) Name your content filter.

2) Be sure the status is set to on if you want the content filter to be active.

3) For the Filter Expression, chose "matches regular expression". 

4) Cut and paste the regex code below into the value text box. The regex specifies a case-insensitive keyword.

(?i)\/secure\/($|.*)

5) Check the "Apply to Headers" checkbox.

6) Enter the word subject in the content box.

7) Inbound Action should be "Off".

8) Outbound Action should be set to "Redirect to Relay".

9) Enter the Relay host found in the Welcome Email  your received from EncryptTitan.

Enter a comment to identify the rule; this step is optional.




Example use of /secure/ as a subject line keyword.

 




Using the keyword /securepotal/ to force the email to use the secure portal only for the method of delivery.


The keyword /secureportal/ should be used when;


 - assurance the that recipients reply back to the sender will be encrypted.

 - two factor authentication is a requirement

 - the message must be stored in a secure environment

 - the sender needs the ability to "recall" (pull back)  the message even after it has been delivered.

 - the  sender needs to receive a read receipt when the message is displayed to the recipient.





Creating the SpamTitan content filter for the keyword /secureportal/.




/secureportal/   -  when included this subject line keyword will force a the email to be delivered to the secure portal. 



Note: This is a global change and will affect all customers on a multi-tenant gateway. 

When adding a content filter for the keyword /secureportal/ you will need administrative access to your SpamTitan gateway.


Go to the Content Filtering page and add a new content filter.


Next,


1) Name your content filter.

2) Be sure the status is set to on if you want the content filter to be active.

3) For the Filter Expression, chose "matches regular expression". 

4) Cut and paste the regex code below into the value text box. The regex specifies a case-insensitive keyword.


(?i)\/secureportal\/($|.*)


5) Check the "Apply to Headers" checkbox.

6) Enter the word subject in the content box.

7) Inbound Action should be "Off".

8) Outbound Action should be set to "Redirect to Relay".

9) Enter the Relay host found in the Welcome Email  your received from EncryptTitan.

Enter a comment to identify the rule; this step is optional.



  



Example use of /secureportal/ as a subject line keyword.






Configuring SpamTitan for the EncryptTitan Outlook Plugin (Optional) 


Important: Do not make these changes until you have received a Welcome Email from EncryptTitan.  Making these changes prior to EncryptTitan deployment will cause email delivery issues.


TABLE OF CONTENTS

 

Using the Plugin to encrypt messages by leveraging Transport Layer Security (TLS) with Verification or the Secure Portal.  



The plugin can be used to allow the sender to enable encryption without needing to type the keyword into the subject line.  There are two options enabled by default, Secure Portal and TLS Verify.


Secure Portal: This allows the sender to force an email to be encrypted via the Secure Portal. The sender will receive a confirmation email stating the email was sent via the Secure Portal. This confirmation email also contains a Message Auditing link which can be used to monitor actions a recipient takes on the email, or recall the message so the recipient no longer has access to the secure email.


TLS Verify: This is used when the sender does not want to require that a recipient log into the secure portal to view a secure message, while meeting most regulatory encryption requirements. Note: If TLS with Verification is not available the message will send via the Secure Portal


There are two key requirements for TLS delivery; EncryptTitan will automatically test for the requirements listed below.


  1) The recipients email server must be able to negotiate TLS 1.2 or above, using at a high cipher suite.

  2) High cipher support must be avialable.

  3) The digital certificate, that is used to facilitate TLS delivery, must match the hostname of the recipients email server.


If  Encrypt Titan is able to validate both requirements, the encrypted message will be delivered to the recipient's mailbox without requiring the recipient to take any additional steps to read the message. The email will contain a banner in the body of the message to let the recipient know that the message was delivered securely.

 


Creating the SpamTitan content filter for the Plugin x-headers.


Note: This is a global change and will affect all customers on a multi-tenant gateway. 

When adding a content filter for the plugin x-header you will need administrative access to your SpamTitan gateway.


Go to the Content Filtering page and add a new content filter.


Next,


1) Name your content filter.

2) Be sure the status is set to on if you want the content filter to be active.

3) For the Filter Expression, chose "matches any word in". 

4) Cut and paste the text below into the value text box.

secureportal verifyopportunistic

5) Check the "Apply to Headers" checkbox.

6) Enter the word x-encryptmethod in the content box.

7) Inbound Action should be "Off".

8) Outbound Action should be set to "Redirect to Relay".

9) Enter the Relay host found in the Welcome Email  your received from EncryptTitan.

Enter a comment to identify the rule; this step is optional.