What is the function of the "Enforced TLS" mode in Mimecast?

The "Enforced TLS" mode in Mimecast is designed to mandate a secure connection for all email messages that are sent and received. When this mode is activated, it ensures that emails are transmitted using Transport Layer Security (TLS), which protects the contents of the messages during transit by encrypting the communication channel. This helps safeguard sensitive information from being intercepted by unauthorized parties, enhancing the overall security of email communications.

By enforcing TLS for all messages, organizations can significantly reduce the risk of data breaches and ensure that sensitive information remains confidential as it travels between email servers. This policy reflects a commitment to maintaining high security standards and adhering to compliance requirements regarding data protection.

In contrast, allowing all messages regardless of protocol would expose the emails to potential security vulnerabilities. Blocking all messages without TLS would mean that emails that cannot establish a secure connection would be lost, potentially disrupting communication. Enabling only internal messages does not address the need for secure communication with external parties, which is crucial in today's interconnected environment. Thus, enforcing TLS provides a balanced approach that prioritizes security without unnecessarily hindering communication.