The raft of legislation governing data retention and privacy applies
equally to email as to other forms of electronic document, and
regulatory compliance is now a major element of enterprise email
systems.
This session provided practical guidance on what enterprises should be
doing to ensure compliance with relevant legislation.
Bill Bunker, VP Marketing of MessageGate Inc., set the scene by
describing the regulatory environment and some of the techniques that
are available to enable an email system to conform., with a focus email monitoring and auditing.
Wen Fang, from Boeing, talked about the Messaging Forum Secure
Messaging Challenge which demonstrated end-to-end strong encryption of
email between business partners, and the extent to which Boeing has
implemented this within its business.
Russ Chung, from the American Eagle Group, described the
approach of encrypting email at the domain boundary and the Messaging
Forum S/MIME Gateway certification program.
Stephan Wappler, of Noventum, described a research project in
Europe to develop a secure approach to email distribution lists, an
"edge case" that is difficult to handle with existing approaches.
Imran Hussain, of ITA Networks, described how the SMTP
protocol is vulnerable to hackers and steps that can be taken to address
known vulnerabilities.
Mike Lambert, Executive Director of the Messaging Forum,
summed up with practical guidelines to achieve regulatory compliance.
In the afternoon, attendees joined the session on
Secure Interoperability for Cross-Organization Information Sharing.
