| ... | ... | @@ -54,6 +54,24 @@ Please organize your daily work accordingly! |
|
|
|
FALCOM recommend to use Thunderbird with Enigmail Plugin and OpenPGP to secure its emails. This combiantion is currnetly available for Microsoft Windows, Linux, and MacOSX. Please use the latest recommended version or ask FALCOM IT Administrator.
|
|
|
|
For use with Android and iOS we can recommend R2Mail2 to be used with OpenPGP.
|
|
|
|
|
|
|
|
## use of keys
|
|
|
|
OpenPGP keys should be generated :
|
|
|
|
- all 2 years
|
|
|
|
- with a key expire time of 2 year
|
|
|
|
- a good passphrase like a password (see Password Policy)
|
|
|
|
- RSA 4096 minimum or ECC
|
|
|
|
|
|
|
|
Keep the private keys secure and limit access.
|
|
|
|
DO NOT DELETE THE KEYS even after expire - keep them deactivated.
|
|
|
|
If you loose a key - deactivate the key and revoke the key but keep them - as you need it to decrypt older emails!
|
|
|
|
|
|
|
|
After a key expires or you leave the company you will hand out all keys include the passphrases as the company is forced to make all company related communication available for at least last 10 years by law. The handout keys will be handled in a internal escrow process and will be used only in a needed case.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
