Solution – Email Security

Standard email is exposed to eavesdropping and tampering once it is sent out on the network (private or Internet). The sensitive information contained in your email is therefore exposed.

In this scenario, there is no way to prove that the sender is the author of the message. The email message can be intercepted or received by an unintended party and the contents of the message can be viewed and/or changed before being sent to the recipient.

End-to-end email security overcomes these challenges by encrypting and signing the contents of your email before being sent on the network. Use digital certificates with your email client to secure your emails with this end-to-end email security.

How it works

The sender proves his/her identity to the recipient and shows that the message came from the sender. The electronic signature on the message proves that the contents of the message (including attachments) has not been tampered with. The end-to-end encryption of the message contents proves that the confidentiality of the message contents was maintained and may only be opened (decrypted) by the intended recipient.

Benefits

  • Support for email security on most S/MIME capable email client software including Microsoft Outlook
  • Ability to encrypt and/or electronically sign the contents and attachments to the email
  • Electronic signature in the email message provides assurance with respect to:
    – The sender’s identity (authentication); and
    – That the contents of the email and attachments are not been tampered with (integrity)
  • Encryption of the email message provides assurance that the content of the message remains secret (confidentiality)
  • Suitable for the exchange of confidential messages and documents internally in your organization or with external parties

Process

Step 1 Choose your S/MIME product option
Step 2 Login/register into your account
Step 3 Complete your order and make payment online
Step 4 * Generate your keys and certificate signing request (CSR) on your PC/device and upload your CSR
Step 5 Prove that you own the email mailbox (through email validation)
Step 6 * Your certificate will be issued; download and install it on your PC/device

* This step varies per operating system; refer to online support resources for assistance

Options

  • Email protection (S/MIME) and digital signature certificates for individuals
  • Supported on most S/MIME email clients including Microsoft Outlook
  • Online self-service portal for order processing and full certificate life-cycle management (issuing, reissues, rekeys, revocation and renewals)
  • Free and unlimited certificate re-issues
  • Free and unlimited rekeys
  • Certificates valid for up to 2 years before renewal is required
  • Private keys may be stored on your device (operating system key store) or may be stored on a physical security token

Technical Specification

  • RSA public-key support for key length 2048-bit and above
  • Support for SHA-2 hash algorithm (256 bit)
  • Digital certificate is fully compliant to X.509v3 specification
  • Client Root Certificate embedded in Microsoft Root Certificate Store