If you under the assumption that the emails you send and receive are encrypted, you are mistaken. The most widely used email platforms, such as Outlook, Gmail, and Yahoo don’t automatically encrypt emails. Many security-conscious individuals and businesses are casting an eye towards email encryption as a way to bolster the security of their data. In today’s society, it is absolutely essential that you try to minimize your security risks when it comes to malicious hackers.

Email encryption is a complex topic that has many facets. Important among these is how to open encrypted email. Since many platforms like Gmail don’t have native encryption capabilities, opening encrypted emails can be a challenging process that is unique to each sender. Other platforms like Outlook offer a way to set up encryption, but this process takes a lot of coordination between the sender and recipient ahead of time.

In this article, we’ll outline the basic steps of opening an encrypted email. In doing so, we’ll break down what encrypted email is, why you might consider utilizing encrypted email, and how it works on a functional level on the most popular platforms. The truth is that sending and receiving encrypted email is often an unwieldy and inconvenient process, which is why so few organizations regularly encrypt emails.

Trustifi is a third-party alternative that offers seamless email encryption that avoids many of the pitfalls of standard encryption methods. If you have ever tried to figure out how to open an encrypted email in Gmail, you will immediately understand the need for utilizing an external service to handle encryption. As we will see, encrypting emails on most platforms is neither intuitive nor seamless.

What is Encrypted Email?

Let’s start with the basics. Most people don’t understand what encrypted email is in the first place, so they simply assume that this security service isn’t for them. Encrypting emails is the process of scrambling the contents of an email message. To reconstruct the message, the recipient needs a key. Think of encryption as a lock and the key as a way to access the information. To an individual without the key, the contents of an encrypted message can’t be accessed. Once you have the key you can access the message easily.

There are two types of encryption for email that are in common use today. The most common type that you will find is known as public-key encryption. Less common, but arguably more robust, is symmetrical-key encryption. We’ll go over both of these standards to give you a better idea of what is required to open an email.

Public-key Encryption

Public-key encryption actually relies on two sets of keys. As the name would suggest, one of these keys is publicly available. The process of maintaining and storing public encryption keys is known as Public Key Infrastructure (PKI). In this type of encryption, the sender has both a public key and a private key, which is also referred to as a digital ID, digital signature, or digital certificate. This digital signature can be acquired through an external third-party that validates the identity of the other individual or business. This external third-party is known as a Certificate Authority. It is important to not think of a digital signature as the same type of signature that you sign all of your emails with. Rather, a digital signature has a vital authentication function for the purposes of sending a secure email through encryption.

With an encrypted email that utilizes PKI, the recipient must already have the sender’s private key on file. This usually works by sending an email with the digital signature attached to the recipient prior to sending the encrypted email. When the actual encrypted email is sent, the recipient will verify that the public key matches the private key by comparing the hashes, or a short string of numbers, in both. By comparing both the publicly available key and the private key they were already sent, the recipient can authenticate that the sender is who they say they are and can open the message.

Symmetric-Key Encryption

Symmetric-key encryption is less common in the public email sphere, but much more common in the defense and military sphere. At a basic level, symmetric-key encryption relies on a single key to encrypt and decrypt messages. In order for symmetric-key encryption to work, both the sender and receiver must have the appropriate key. Depending on the level of encryption used, if a third-party doesn’t have the correct key it is essentially impossible to unlock.

The highest level of symmetric-key encryption currently available is the Advanced Encryption Techniques (AES) 256 bit. This is the level of encryption utilized by the U.S. Military, Department of Defense, and other Government Agencies. This level of encryption is so strong that if an outside party doesn’t have the key, breaking the encryption would require more computing power and electricity than currently available on the planet today.

Opening an Encrypted Email

Now that we have a basic understanding of the components of encrypted email, now we can finally discuss how to open an email with this extra level of security. There are different ways to open an encrypted email depending on the type of encryption used. Both types of encryption methods will require you, as the recipient, to already have a key. For opening an encrypted email sent with symmetric-encryption, having the key is all you need to decrypt the email.

For opening an encrypted email sent with public-key encryption, the process is a bit more complicated. You will already need to have the private key, or digital certificate, of the sender saved on your computer. This will then be used to validate the public key for that sender. Comparing both of these will allow you to authenticate the sender and open the encrypted email.

Opening an Encrypted Email in Outlook

If you or your organization is an Office365 subscriber, you can send and receive encrypted emails to other subscribers using Office365. Opening these emails is relatively straightforward. Rather than requiring you to have a private key saved on your computer, Outlook will authenticate you in a different way. When using Office365, you’ll be sent an email with the encrypted message as an attachment. Opening the attachment brings you to a sign-on page. On this page, you can either sign on with your organization’s credentials or receive a one-time passcode that authenticates you as the recipient.

How to Open an Encrypted Email Sent Through Trustifi

The reality is that email encryption is often too much of a hassle for most people to set up and use, which is why we so rarely see it in our personal email inbox despite its advantages.

That’s why Trustifi developed a simplified process for sending and receiving encrypted emails and it’s hassle free nature is one of the biggest advantages.

Opening an encrypted email sent by a Trustifi user is very simple. First, understand that the recipient doesn’t need to have Trustifi installed in their web browser. When an encrypted email comes in, they can click on the email. This will bring them to a page where they can complete an easy 2-factor authentication process. Once authentication is complete, the recipient can open and view the email. From the same page, the recipient can reply and send an encrypted reply back to the original sender.  

Closing Thoughts

Encrypted email offers some enormous advantages in terms of privacy. Today’s email inboxes, whether they are our personal email or an institutional email, are a key area of vulnerability. This vulnerability exists when the email is in-transit to its destination and once it arrives. Encryption ensures that even if an email is intercepted on its way to its destination, there is no possible way that the malicious actor that intercepted the email can open it and view its contents. Encryption also ensures that if an encrypted email is sitting in the destination inbox and the login credentials of that inbox are stolen, no one other than the intended recipient can access the information.

Given the obvious security enhancement that encryption offers, you might be wondering why it isn’t a more common service. While modern encryption is very strong, it is also often inconvenient for both the sender and recipient. The most common form of email encryption in use today requires two keys to authenticate and decrypt an encrypted email. It also requires coordination between the sender and recipient beforehand. This simply doesn’t translate well to modern business environments where the pace of communication is rapid and the list of recipients is diverse.

An encryption platform like Trustifi offers a way to streamline the process of sending and receiving encrypted emails. With Trustifi, only the sender needs to have Trustifi installed. In order to open an encrypted email sent with Trustifi, the recipient must complete a 2-factor authentication process.

If you are interested in using seamless end-to-end encryption for your business, please contact Trustifi today.

Sources

1. Orman, Hilarie. “Introduction: What Is Secure Email?” In Encrypted Email: The History and Technology of Message Privacy, edited by Hilarie Orman, 1–7. Cham: Springer International Publishing, 2015. https://doi.org/10.1007/978-3-319-21344-6_1.
2. Orman, Hilarie. “How Does Secure Email Work?” In Encrypted Email: The History and Technology of Message Privacy, edited by Hilarie Orman, 33–57. Cham: Springer International Publishing, 2015. https://doi.org/10.1007/978-3-319-21344-6_3.
3. https://support.office.com/en-us/article/send-view-and-reply-to-encrypted-messages-in-outlook-for-pc-eaa43495-9bbb-4fca-922a-df90dee51980

Given the threats facing today’s individuals and organizations, sending and receiving secure email is becoming a necessity. Although the technology supporting the use of secure email may not be new, most people still fail to use secure email as an additional security layer. A variety of products on the market, including Trustifi, have made sending and receiving secure email easier than ever before.

In this article, we’ll outline how you can begin securing your email. If you have ever wondered, “what is secure email?” then this article is for you. We’ll discuss what secure email is, and explore how to secure email in a way that is both easy and intuitive. Traditional methods of sending and receiving secure email have failed to accommodate the need for a seamless, process. As such, many people simply can’t be bothered to utilize secure email despite the apparent advantages of doing so.

What Does Secure Email Mean?

Any discussion about secure email should first outline exactly what we mean by “secure email.”  The only effective way to truly secure email is by encrypting it. So, when we are talking about “secure email” we are really referring to methods of encrypting emails. The process of encryption is what is actually lending security to any email.

What is Encryption?

In layman’s terms, encryption is the process of scrambling the contents of an email so that they are unreadable. Unscrambling the contents of the email, referred to as decrypting, requires the use of a decryption key.

When discussing encryption, keys fulfill two functions. First, the key is used to gain access to the contents of the email that has been encrypted. Second, keys allow the recipient to authenticate the sender of the encrypted email.

What Are The Advantages of Secure Email?

The core intention behind securing email is to restrict access to the data in the sender’s message content to everyone except the intended recipient. Sure, the main motivator is to keep personal information private, but there are many more crucial reasons to secure an email.

Compliance

Many individuals and organizations have a regulatory requirement to transmit and store sensitive data securely. This often includes things like personally identifiable information (PII) and electronic protected health information (e-PHI). Protecting e-PHI is essential under the Health Insurance Portability and Accountability Act (HIPAA), which is one example of a regulatory structure that organizations who interact with e-PHI or PHI must comply with. Penalties for non-compliance can be stiff and can include monetary penalties as well as the loss of revenue and reputational harm that can accompany improper handling of sensitive data.

Security

Email can be incredibly vulnerable. This vulnerability exists when email messages are in-transit to the destination, and once it has arrived and is sitting in an inbox. Encryption addresses both of these concerns by limiting access to only individuals that have the correct key to decrypt the message. Even if an email is intercepted in transit, without the right key, access is impossible. This also holds true if an email account has been compromised. If a malicious actor has access to an email but doesn’t have the key to unlock the encryption, the data in the email is still off-limits.

Risk-Management

Cybersecurity today is about recognizing the level of risk that is facing you or your organization and implementing realistic best-practices that minimize that risk to an acceptable level. Utilizing a secure email service is one important aspect of a comprehensive risk-management strategy. Secure email limits access to the sensitive data an email may contain through powerful encryption. When combined with other cybersecurity best practices such as strong passwords and multi-factor authentication, secure email services enhance the overall security posture of an individual or organization.

How Does Secure Email Work?

There are two different types of secure email encryption that are traditionally used to protect sensitive information. The first of these, public-key encryption, relies on two sets of keys that both the sender and recipient must have. The second, symmetric-key encryption, utilizes a single shared key that both the sender and recipient have access to.

Public-Key Encryption

Public-key encryption is the most common type of encryption available for the highest email clients. Public-key encryption can be a bit challenging to set up for first-time users. How it works is an individual or business that wants to send a secure email needs to find the public key of the recipient. Often, this is provided by the recipient or can be looked up. Once they have the intended recipient’s public key they can encrypt the email. The sender will also need to include a digital signature, sometimes referred to as a digital certificate. Digital signatures are provided by a Certificate Authority. This digital certificate or signature is required for the recipient to actually open, or decrypt, the secured email.

Once the email is sent, the recipient must verify the identity of the sender by comparing their public key with the private key they already received. This is done through hashes, which are a short series of numbers. If the recipient wants to reply to the email, they’ll have to get a digital signature or certificate of their own and repeat the process that the sender just completed.

In sum, the process of sending a secure email to a specific email address through a standard mail client can be tedious at best. The most difficult aspect of this transaction is ensuring that each party involved has the private key of the other party. Also, remember that this only works between the two individuals or entities that have both the necessary private and public key.

Symmetric-Key Encryption

The process for sending and receiving emails secured with symmetric-key encryption is more simple, yet suffers from some of the same inherent problems that plague public-key encryption. Essentially, symmetric-key encryption utilizes a single key. This key is used to both encrypt and decrypt the email or attachment. So, to send an encrypted email in this fashion you would send the key to your intended recipient. Then, you would encrypt the email and send it to that recipient. The recipient would use the key they had received to decrypt the email. If they wanted to reply to that email they could then use the same key to encrypt their own reply.

Sending Secure Email With Trustifi

Sending a secure email with Trustifi addresses many of the shortcomings associated with sending a secure email via the other processes we have outlined above. In both public-key encryption and symmetric-key encryption, the key required to unlock the encrypted message must be shared ahead of time with the recipient. While this can work fine if you are sending messages to a single individual, it quickly becomes a burden when sending to multiple people. You’ll have to each share the appropriate key to unlock the encrypted email before you can communicate.

Trustifi simplifies the process by using multi-factor authentication to verify the identity of the recipient. Remember, with public-key encryption the identity of the sender is authenticated through a combination of public and private keys. With Trustifi, a simple 2-factor authentication process is completed. Additionally, only the sender needs to use Trustifi. Recipients don’t have to have it installed to access encrypted emails.

Trustifi integrates with your email platform of choice, that way you don’t have to sign up with a new email provider. You compose your email as you normally would, include any attachments you want to send, and then click the Trustifi tab to select your security and delivery confirmation options. In order to complete the 2-factor authentication process, you’ll have to include your recipient’s phone number, or share with them the authentication code beforehand. After that, all you have to do is send your email and Trustifi automatically encrypts the email and any attachments with AES 256-bit encryption.

For the recipient, opening an encrypted email sent through Trustifi couldn’t be easier. Upon opening the email the recipient will be brought to a page where they must complete the two-factor authentication process. Upon completing this process, whether through a pre-arranged code or by entering a code they received on their mobile phone, the recipient has access to the encrypted email. If they want to reply, they can simply reply within the same window and Trustifi will automatically encrypt the reply.

Closing Thoughts

Sending and receiving secure emails doesn’t have to be so difficult. While traditional methods may be taxing and cumbersome, there are other more progressive ways that allow you to send secure mail in an easier fashion. With Trustifi you can simply encrypt the message and send it. Validation of the recipient occurs through two-factor authentication. The system also allows the recipient to reply with an encrypted email directly from the same window, even if they don’t have Trustifi installed.

If you are looking for an effective way to boost email security of your electronic correspondence through your web browser, try Trustifi today.

Sources

1. Orman, Hilarie. “Introduction: What Is Secure Email?” In Encrypted Email: The History and Technology of Message Privacy, edited by Hilarie Orman, 1–7. Cham: Springer International Publishing, 2015. https://doi.org/10.1007/978-3-319-21344-6_1.
2. Orman, Hilarie. “How Does Secure Email Work?” In Encrypted Email: The History and Technology of Message Privacy, edited by Hilarie Orman, 33–57. Cham: Springer International Publishing, 2015. https://doi.org/10.1007/978-3-319-21344-6_3.
3. https://www.comparitech.com/blog/vpn-privacy/how-to-encrypt-email/