Standard encryption

Standard encryption comprises rules that, when matched, trigger the standard functionality process. This process is as follows:

  1. Sender sends email that triggers the rule.
  2. The email is saved to the Encryption service quarantine store.
  3. The recipient is sent an email notification containing an encrypted link that when clicked allows access to the Encryption service quarantine store by HTTPS.
  4. The sender is sent one or more notifications, depending on the number of recipients. Each notification contains a password that is required by a recipient to access the email. The sender needs to notify the recipient(s) of their password.

The criteria for the “parking” rules can include:

  • Sender addresses
  • Recipient addresses
  • Messages marked as “sensitive” in the email headers
  • Messages including a pre-defined prefix (trigger word) in the subject line.

To set up standard encryption, click Add in the Encryption section of the Encryption tab.

Steps

  1. Enter a name for the encryption rule, and select Standard Encryption as the encryption type.
  2. Define the password generation criteria (see Password specification).
  3. Optionally, enter one or more senders or recipients for the rule to apply to. These can be individual email addresses, groups configured in Forcepoint Email Security Cloud, or domain names. You can enter multiple senders or recipients, separated by commas.

    To edit an existing sender or recipient, click the item. Press Enter to save your changes as a new entry in the sender or recipient list. To discard your changes, press Esc.

    To remove an item from a sender or recipient list, click the Delete icon next to the item.

  4. If you are including subject criteria in the encryption rule, select whether the message should match any of the criteria, or all of the criteria you select to trigger the rule.
  5. To include messages with a sensitivity setting in the email headers for encryption, mark The message contains a sensitivity header, and select an option from the drop-down list. If you want the rule to match against all sensitivity headers, select Any.
  6. To define a trigger word that appears at the beginning of the subject line for messages to be encrypted, mark The subject starts with box, and enter the trigger word.
    Note: A trigger word is not case sensitive and MUST be followed by a space.
  7. If required, edit the notifications sent to sender and recipient (see Notifications).
  8. Click Submit.
    When an outbound email meets all of the specified criteria, the email is subjected to the standard encryption process.