- Secure Email PLUS
- Secure Large Files
- Data Leak Prevention
Challenge Response Authentication (CRA)
User Identity verification is performed when a prospective user registers with the Secure Messaging Platform. Email address ownership is confirmed by a challenge during registration that requires an activation code (optional). Depending on how the User registers, this activation code may be provided transparently. In other cases, it will be provided in an email message. If a User sends a secure message to an individual that is not using the Secure Messaging Platform, the recipient will receive a customizable invitation message via basic email to register with the specific branded Secure Messaging Platform and then read the message securely from the Secure Message Center. This can be disabled by the group administrator for situations where the User Group settings have been set to “closed” and new Users must explicitly be authorized by the administrator in order to join the User Group. The Challenge Response Authentication (CRA) enables an additional level of non-repudiation when new Users register with the Secure Messaging Platform. The CRA feature acts as a second factor authentication where new Users are required to enter a Client ID, PIN, Account Number, Zip code, or any other unique identifier as required. Once registered, the CRA code must be entered by the new User prior to the User having access to secure message or file attachments. Once the CRA code is validated, a date stamp and IP address is recorded and is available through the Web Admin Console for audit purposes. The DLP whitelist feature allows automatic CRA exemption of specific domains or email addresses. This is useful, for example, for whitelisting other internal Users when senders are sending emails inside the organization. The CRA can be integrated through the API for automatic provisioning with any existing database in the organization, including LDAP. Alternatively, the CRA code can be entered manually by the Sending User when creating secure messages to new Users. This option requires no special integration and can be up and running with a single click through the Web Admin Console. The Sending User manually enters the CRA code at the time of composing a secure message to a new User. The CRA code can always be changed or re-entered later if the password or PIN was entered incorrectly during the invitation process.