최근 검색


최근 검색 없음

Sam Turner's Avatar

Sam Turner

가입한 날짜: 2024년 4월 05일

·

마지막 활동: 2024년 4월 05일

팔로잉

0

팔로워

0

총 활동 수

4

투표

1

가입 플랜

1

활동 개요

님의 최근 활동 Sam Turner

Sam Turner님이 에 게시물을 만듦

게시물 Feedback - Ticketing system (Support)

Note: Include attachments in emails doesn't appear and can't be enabled if secure downloads is enabled. Additionally, when you enable secure downloads, agents can't copy and paste images from their computer into ticket comments.

Whilst I understand why this is in place it does conflict with workflows, for example;

 

- We have agents wanting to receive and send attachments (sometimes containing sensitive data)

- These attachment recipients should not be logged in nor have an account and should be able to receive the attachments as attachments in an email. The customers are dynamic, can sometimes be a one-time experience and shouldn't rely on them having to create an account to access the data.

- The attachments should only be accessible via logged in Agents (enable secure downloads) and recipients of the emails from the tickets in which they raise (enable email attachments). This scenario removes the ‘Security by Obscurity', of which isn't ‘Secure’, whilst also allowing those customers to access the data truly addressed to them.

 

Security by obscurity alone is discouraged and not recommended by standards bodies. The National Institute of Standards and Technology (NIST) in the United States recommends against this practice: "System security should not depend on the secrecy of the implementation or its components."[9] The Common Weakness Enumeration project lists "Reliance on Security Through Obscurity" as CWE-656

 

It would be good to understand if we can be a bit more granular with what ‘Enable Secure Downloads’ affects, having it blanket for both agent and customer side can be counter intuitive and break the experience for the customer.

2024년 4월 05일에 게시됨 · Sam Turner

3

팔로워

4

투표 수

1

댓글


Sam Turner님이 에 댓글을 입력함

댓글Ticket management

Note: Include attachments in emails doesn't appear and can't be enabled if secure downloads is enabled. Additionally, when you enable secure downloads, agents can't copy and paste images from their computer into ticket comments.

Whilst I understand why this is in place it does conflict with workflows, for example;

- We have agents wanting to receive and send attachments (sometimes containing sensitive data)

- These attachment recipients should not be logged in nor have an account and should be able to receive the attachments as attachments in an email.

- The attachments should only be accessible via logged in Agents (enable secure downloads) and recipients of the emails from the tickets in which they raise (enable email attachments).

 

It would be good to understand if we can be a bit more granular with what ‘Enable Secure Downloads’ affects, having it blanket for both agent and customer side can be counter intuitive and break the experience for the customer.

 

댓글 보기 · 2024년 4월 05일에 게시됨 · Sam Turner

0

팔로워

0

투표 수

0

댓글