Phoenix - Your AI AssistantEmail Encryption Setup - Secure Electronic Mail Link
- Posted:
- Proposals: 1
- Remote
- #186173
- Expired
has already sent a proposal. Description
Experience Level: Entry
I need the following setup for a client. I need it done ASAP. Ideally you will be someone based in or near London, so you get to the clients site in Central London. However, this can also be done remotely. I need someone to start this task within the next 2 days.
This setup is for a one man band. It's one person office (or computer). They need to setup a secure email system so they can email the FDA in the US. I know there are easier ways to do it then the instructions below. However, because of various reasons, we must do it using the system below. I would prefer it if you could give me a fixed price for teh job. I will also consider per hour rate. However, you must indicate to me how long you expect to take on the job. We are a IT support company based in Central London.
We will be going with OPTION A BELOW.
Here is the instructions (pasted):
There are two ways to securely send email to and from the FDA: S/MIME encryption or Secure SMTP over TLS encryption.
OPTION A) S/MIME encryption is difficult to setup, use, and maintain as everything is done at the workstation level.
• Typically, your certificate will need to be repurchased/renewed once-a-year. This will require the new certificate to be installed on your workstation and coordination with the FDA to attach it to your Secure Email profile. Thus, over a 5 year period, you will switch out your certificate 5 times.
• If you change workstations or when you renew your digital certificate, your old certificates must be preserved otherwise you will lose the ability to read old encrypted emails.
• If you have a Blackberry (or other mobile device), you will not be able to read the encrypted emails unless you install the Blackberry (or similar) S/MIME application and copy your certificate over. Any new certificates will need to be copied over.
• For each FDA user or mailbox you wish to securely communicate with, a one-time setup process is required to create an FDA Outlook contact and corresponding FDA proxy certificate.
• S/MIME is setup on a per user basis. Thus, if you wish 10 of your users to send secure email to the FDA, then they each have to be configured individually.
• The FDA S/MIME Email Firewall is incompatible with Outlook 2011 (for Mac) and Groupwise.
• If you have Outlook 2010, please make sure Outlook 2010 Service Pack 1 is installed.
• Your email server may apply disclaimers or legal notices on all outbound emails. An exception will need to be applied to the email server’s transport rule to avoid doing this when sending to the FDA. The reason is disclaimers affect how S/MIME protected email is repackaged. These alternations cannot be processed correctly by the FDA S/MIME Email Firewall. If your organization requires these disclaimers to be appended, then you cannot use S/MIME and must use TLS.
S/MIME does have the following advantages:
• Technically adept users can set this up themselves and not involve their email administrators.
• Email received from the FDA will remain encrypted in your Inbox. Encrypted email sent to the FDA will be automatically decrypted by the FDA internal S/MIME Email Firewall before being delivered to the FDA recipient.
• Email sent to and received from the FDA will remain encrypted in your Inbox.
• A one year Verisign digital id for one person is $20.
• After the certificate is purchased and installed, typical setup with a knowledgeable IT staff is a couple hours and a few emails.
OPTION B). Secure SMTP over TLS encryption (RFC3207) is far simpler to setup from the user perspective.
• The configuration is done at the email server level and only involves your email administrator. Please do not confuse “Secure SMTP over TLS” with client email SSL/TLS encryption (i.e. Outlook having a SSL/TLS connection to an email server)
• It will be your email administrator’s responsibility to ensure all the intermediate links between your infrastructure and the FDA (and vice-versa) are TLS encrypted.
• Encryption is only used for transport. The email will be unencrypted in your mailbox and in the FDA recipient’s mailbox. This allows emails to be read from Blackberry’s and other email clients.
• Everyone at your organization will be able to send email securely to the FDA.
• A one year Digicert SSL certificate is $144. A three year certificate is $345.
• If your organization’s email system is all internal, then total setup time is:
- Certificate purchase and receipt is typically one to two days as the provider may need to perform verification.
- Certificate installation and TLS setup with a knowledgeable email administrator is a couple of hours and a few emails.
• If parts of your organization’s email system is outsourced, then setup time may be considerably longer as coordination with a third party and multiple links are involved.
This setup is for a one man band. It's one person office (or computer). They need to setup a secure email system so they can email the FDA in the US. I know there are easier ways to do it then the instructions below. However, because of various reasons, we must do it using the system below. I would prefer it if you could give me a fixed price for teh job. I will also consider per hour rate. However, you must indicate to me how long you expect to take on the job. We are a IT support company based in Central London.
We will be going with OPTION A BELOW.
Here is the instructions (pasted):
There are two ways to securely send email to and from the FDA: S/MIME encryption or Secure SMTP over TLS encryption.
OPTION A) S/MIME encryption is difficult to setup, use, and maintain as everything is done at the workstation level.
• Typically, your certificate will need to be repurchased/renewed once-a-year. This will require the new certificate to be installed on your workstation and coordination with the FDA to attach it to your Secure Email profile. Thus, over a 5 year period, you will switch out your certificate 5 times.
• If you change workstations or when you renew your digital certificate, your old certificates must be preserved otherwise you will lose the ability to read old encrypted emails.
• If you have a Blackberry (or other mobile device), you will not be able to read the encrypted emails unless you install the Blackberry (or similar) S/MIME application and copy your certificate over. Any new certificates will need to be copied over.
• For each FDA user or mailbox you wish to securely communicate with, a one-time setup process is required to create an FDA Outlook contact and corresponding FDA proxy certificate.
• S/MIME is setup on a per user basis. Thus, if you wish 10 of your users to send secure email to the FDA, then they each have to be configured individually.
• The FDA S/MIME Email Firewall is incompatible with Outlook 2011 (for Mac) and Groupwise.
• If you have Outlook 2010, please make sure Outlook 2010 Service Pack 1 is installed.
• Your email server may apply disclaimers or legal notices on all outbound emails. An exception will need to be applied to the email server’s transport rule to avoid doing this when sending to the FDA. The reason is disclaimers affect how S/MIME protected email is repackaged. These alternations cannot be processed correctly by the FDA S/MIME Email Firewall. If your organization requires these disclaimers to be appended, then you cannot use S/MIME and must use TLS.
S/MIME does have the following advantages:
• Technically adept users can set this up themselves and not involve their email administrators.
• Email received from the FDA will remain encrypted in your Inbox. Encrypted email sent to the FDA will be automatically decrypted by the FDA internal S/MIME Email Firewall before being delivered to the FDA recipient.
• Email sent to and received from the FDA will remain encrypted in your Inbox.
• A one year Verisign digital id for one person is $20.
• After the certificate is purchased and installed, typical setup with a knowledgeable IT staff is a couple hours and a few emails.
OPTION B). Secure SMTP over TLS encryption (RFC3207) is far simpler to setup from the user perspective.
• The configuration is done at the email server level and only involves your email administrator. Please do not confuse “Secure SMTP over TLS” with client email SSL/TLS encryption (i.e. Outlook having a SSL/TLS connection to an email server)
• It will be your email administrator’s responsibility to ensure all the intermediate links between your infrastructure and the FDA (and vice-versa) are TLS encrypted.
• Encryption is only used for transport. The email will be unencrypted in your mailbox and in the FDA recipient’s mailbox. This allows emails to be read from Blackberry’s and other email clients.
• Everyone at your organization will be able to send email securely to the FDA.
• A one year Digicert SSL certificate is $144. A three year certificate is $345.
• If your organization’s email system is all internal, then total setup time is:
- Certificate purchase and receipt is typically one to two days as the provider may need to perform verification.
- Certificate installation and TLS setup with a knowledgeable email administrator is a couple of hours and a few emails.
• If parts of your organization’s email system is outsourced, then setup time may be considerably longer as coordination with a third party and multiple links are involved.
New Proposal
Login to your account and send a proposal now to get this project.
Log inClarification Board Ask a Question
-
There are no clarification messages.