Slide

Download Report

Transcript Slide 

Fact check
Test your knowledge of the these security concepts:
•
•
True or False: Over half of the messages received today in Exchange Online are spam
True. About 67 % of all messages are spam
•
•
True or False: Exchange Online Protection uses single AV solution
False. EOP uses 3 different AV engines and strength of protection comes from the combination of these
solutions
•
•
___________ was the latest Office encryption technology released in 2014.
Office 365 Message Encryption
•
•
True or False: Office 365 Message Encryption and EOP only work with Cloud mailboxes
False. EOP can filter mailboxes even if mailboxes are not in cloud. Office 365 Message Encryption can
work with on premise Exchange solution if used with EOP or hybrid Mailflow.
1
2
Customer feedback
Spam analysts
Virus
scanning
Policy
enforcement
Quarantine
Spam protection
False +ve/-ve
Spam
protection
Virus
scanning
Policy
enforcement
Quarantine
Spam analysts
Internet
Built in mail protection reports for Office 365
Core principles:
Reports surfaced via:
Transparent
Web browser - Office 365 portal>reports>data protection
Relevant
Microsoft Excel client- connects to the reporting web service
Actionable
Power shell and reporting web service
Easy to use
• Contoso Pharma wants to send encrypted emails to its partner doctors
• Administrator has configured an ETR to encrypt any message going to Dr Toni
when the subject contains the word “Encrypt”
• Dr Toni gets the encrypted email at his hotmail address and follows instructions to
view the encrypted message send from Serena
• Alex, also wants to view the mail and uses Onetime passcode to view the message
on his desktop and Android device
Sending organization needs to have purchased and configured Azure Rights Management Services (RMS)
Keys imported from Azure RMS are 2048 bit and use SHA-256 encryption (Crypto Mode 2)
HTML file contains the encrypted message along with other metadata
User authenticates using a Microsoft account, Organizational Account or OneTime Passcode
If user has neither, user is told and asked to create a Microsoft account before viewing
Any email address (@yahoo.com, @gmail.com, etc…) can be used to create a Microsoft account
Information protection technology
Combines encryption and usage restrictions
Simple to use
Standards-based way to secure email communication
Exchange on-premises continues to support S/MIME
OWA 2013 support added in SP1
http://channel9.msdn.com/Events/TechEd
www.microsoft.com/learning
http://microsoft.com/technet
http://developer.microsoft.com