HIPAA - GLB Act Compliance and security features in FileCatalyst Webmail

FileCatalyst Webmail Security Features

When we first started to develop FileCatalyst Webmail, we had "secruity" as one of the main issues to address. We wanted our solution to help IT managers provide easy file transfer application without the caveat of unauthorized access and security breaches. In specific, we wanted IT departments reach compliancy mandates such as the ones set by HIPAA and GLB Act.

This is why we’ve developed various feature sets that provide for a robust, secure and highly configurable server end. The IT administer has full control on how to set up the solution so that it fits with the security protocol of the organization without compromising ease-of-use from the end user. Some of these security features included in FileCatalyst Webmail are:

Restricting Access: FileCatalyst Webmail can be configured to restrict access and prevent unauthorized usage. These restrictions can be applied through various tools built intoFileCatalyst Webmail .

  • Email and IP Filtering: FileCatalyst Webmail supports rules that allow or prevent certain email addresses from receiving FileCatalyst Webmail notifications. Instead of a specific email address, domain names can also be used. The system also supports IP address filtering. A certain IP address or a range of IP addresses can be allowed to send file packages. These rules provide a powerful means to grant and restrict access to FileCatalyst Webmail.

    An example of these rules is shown below where FileCatalyst Webmail can be configured to be used by Unlimi-Tech employees (email addresses that end with the domain utechsoft.com). Also these employees will be accessing FileCatalyst Webmail from the internal network, so will have IP address range from 192.168.0.1 to 255. Everyone else from the outside is only allowed to send files to Unlimi-Tech employees but to no one else. To set FileCatalyst Webmail in such a way, the following three rules need to be entered:

    • Rule #1: Allow ALL to send files to *@utechsoft.com
    • Rule #2: Allow 192.168.0.1 – 255 to send files to ALL
    • Rule #3: Deny ALL to send files to ALL

  • Filter levels for different user types: FileCatalyst Webmail support three different user-types (Anonymous, Restricted User and Full-Access User). The rules can be applied at the three different user levels, giving full control over the system. For example anonymous users may have tighter restrictions, whereas Full-Access user may have no restrictions.
  • IP Level Blocking: FileCatalyst Webmail can block a specific IP address or a range of IP addresses from accessing the system. This feature is useful to curb abuse from a known hacker IP. Also competitors’ IP address can be listed to prevent snooping.

Open or Closed System: FileCatalyst Webmail can be configured as an open or closed system. As an open system, users can register on FileCatalyst Webmail and will be granted access automatically. The default level of access can be set to two different types (Restricted User or Full-Access User.) An open system is useful when the administrator can be confident that only authorized users are accessing the FileCatalyst Webmail logon page. This can be done using FileCatalyst Webmail IP filtering tools and using a third-party firewall. As a closed system, users are able to register on FileCatalyst Webmail but aren’t granted access until a system administrator verifies their credentials. This is a manual process and is useful when the administrator can’t use other tools to ensure only authorized users are requesting access to the FileCatalyst Webmail logon page.

Securing File Transfers: FileCatalyst Webmail provides enhanced security features that secure the file transfer process.

  • Encrypted File Transfers: FileCatalyst Webmail can wrap FTP over HTTPS to provide encrypted file transfer uploads. File downloads can be done on HTTPS as well. This two way encryption prevents network snoops from viewing file transfers. Files can also be stored on the FTP storage area in an encrypted manner using third-party software.
  • Password Protected Downloads: FileCatalyst Webmail can protect file downloads with a password. This password is specified by the sender when uploading the file package. The password needs to be communicated via a different channel (through phone, fax or another email). The password is not included in the email sent to the recipient. Without the password, the recipient can’t download the file package.
  • Automatic PIN: FileCatalyst Webmail supports automatic PIN generation. This PIN is an automatic password that is generated by FileCatalyst Webmail and is included in the email notification sent to the recipient. This feature is useful when emails are digitally signed to prevent unauthorized email access and acts as a further security feature to prevent URL guessing.
  • Account or IP Suspension: After 3 unsuccessful attempts for a login, a registered account is suspended until the administrator unlocks it. Also if the wrong password is used for file downloads, the IP is blocked for 30 seconds before the next attempt can be made.
  • Tracking and Auditing: With automatic tracking and logging of all transactions, FileCatlyst webmail provides an easy way to detect all transactions and their details at the fullest level. This accountability helps curb abuse and track unauthorized access to files.

So in summary, FileCatalyst Webmail with its enhanced feature sets help IT organizations reach towards stringent compliancy mandates as set by certain verticals, including HIPAA and GLB Act. If you wish to reach such compliancy standards within your organization have a closer look at Webmail.

Posted by Zaki Usman on June 28, 2008 11:18 AM |


© Copyright 2008 Unlimi-Tech Software Inc.