CipherCloud for Office 365
June 04, 2013
Based on a percentage of the Office 365 price
- Strengths: Provides encryption for email and calendar for MS Office 365
- Verdict: We liked its simplicity, effectiveness and compliance
Many organisations outsource email to a cloud provider, and one of the most successful of these providers is Microsoft with its Office 365 offering. This is a cloud-based version of Microsoft Office that adds a few additional features making it an attractive option, especially for small to mid-sized organisations. However, it is not without its security weaknesses, as is the case with all cloud-based offerings.
The major issue is that email can be quite sensitive and there are privacy requirements to which an organisation in certain markets must adhere. If the email is in clear text, in the cloud those privacy requirements are not being met. Likewise, the cloud provider has access, and if the provider is ordered by the courts to reveal all of the content stored in its systems, your clear text email may be at risk of disclosure without your consent or even your knowledge. This is where CipherCloud for Office 365 comes in.
This innovative product is very simple in concept: It encrypts email end-to-end, and it does it without interfering with the user experience. Moreover, since the encryption keys are retained on-premise, the organisation is not at risk for loss of the keys, misuse of the keys or any of the onerous regulatory penalties for exposing - or potentially exposing - private information to unauthorised access.
The system, from the user perspective, is simplicity itself. The administrator decides what gets encrypted - all email and calendar or selective encryption - sets the policy, and the rest is seamless and transparent to users. The email can be recalled as PST files and decrypted locally if the need should arise, so the organisation is not at risk of the cloud provider being shut down. Encryption is strong - AES 256 FIPS-approved, so protection is robust. Likewise, the product can support other cloud-based applications, so developing a secure cloud strategy gets easier.
We liked this tool for its simplicity and direct application to a real challenge. The fact that it is extensible to other applications and that there are more apps on the drawing board, just adds to its promise.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Security Architect, Cardiff - to £70k Basic
Infosec People - Cardiff, Wales
Interim CISO (Chief Information Security Officer) - Cyber Security Director
CYBER EXECS - London (Central), London (Greater)
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report