All data flows through the internet from point to point and if not. Hackers and governments usually get into this data by intercepting the connection. To avoid this, messages and files can be rendered in a code, and such coding, is called encryption. To crack the code and unlock the encryption, you need a key. End-to-end encryption, as the name implies, leaves the key to the code at either end of a communication so that only the sender and recipient can ever crack it. In other words, messages sent by one person to another can only be seen by those two individuals. Everyone else, can still intercept the message but it will be nothing more than gibberish.
Understanding End-to-End Email encryption
Secure Swiss Data has developed a secure email service. The end-to-end encrypted communication between Secure Swiss Data users uses public key cryptography techniques. The encryption standards used are AES – advanced encryption standard and RSA in order to get the very best benefits of asymmetric – the speed of exchanging keys and symmetric – very fast and well-vetted, inside the OpenPGP standard.
The encryption process
The encryption process starts on the users side.
When Helen registers with Secure Swiss Data, she and automatically gets two keys:
- Public Key – this key is shared with the people who send encrypted messages to her
- Private Key – is a key that is stored locally on her device (only Helen has access to this key) and is used to decrypt messages Helen receives
The keys are generated on Helen’s device when she enters the Encryption password. The encryption password decrypts the Helen’s private key stored encrypted on the browser. The Secure Swiss Data users send and get the keys always encrypted, every time they log to the system when the correct Encryption password.
Now David, as a Secure Swiss Data user, wants to send an email to Helen. He creates the email which gets encrypted with Helen’s Public Key.
Then the email goes through the encrypted channel to Helen.
Helen receives the message sent by David and using her Private Key the system automatically decrypts the message so Helen can read it
“Zero Knowledge” encryption
The emails are always encrypted, even when stored on the Secure Swiss Data servers. Every email, between Secure Swiss Data users, is sent encrypted from the user’s device to our server, stored on the server encrypted, and then the email is transmitted encrypted to the end Secure Swiss Data user.
Encrypted emails all the way make sure that even in the case of a breach the messages are secure and nobody except the Secure Swiss Data user knows its content.
The “Zero-knowledge” ethos, Secure Swiss Data implements, ensures all user data is encrypted on the server. With the private encryption key users send the messages to the server encrypted. Because Secure Swiss Data doesn’t have access to users private encryption key, they can’t decrypt the messages, read them or scan for keywords.
Secure Swiss Data can’t and will never put users under surveillance to sell their data or profile details, and there will be no advertisements.
How relevant is Secure Swiss Data End-to-End email encryption
E2EE is only as good as the implementation. A tight implementation could prevent breaches in transit, however users at either end will still need to be cautious to protect their communications. E2EE systems that aren’t implemented properly will leave out loopholes that can be exploited by attackers.
End-to-end encryption is powerful and certainly relevant, but the users need to understand its limitations and take further action to protect their data. Two-step verification, encrypted productivity features, and private servers located in data-privacy conscious jurisdictions can add a layer of safety to all your files and private communications.
Comprehensive security and therefore privacy protection can only be achieved through a combination of technology, operational principles and legal protections.
Switzerland + advanced IT infrastructure = service that is both reliable and secure.
Secure Swiss Data, being aware of this, not only encrypts user’s email communication, but operates from Switzerland, thus protects users data by storing it under 320m of granite in a Swiss mountain and making sure it is protected by the world’s most robust privacy laws including the Swiss Federal Data Protection Act.
The big announcement
At the End of May Secure Swiss Data will be launching the very first version of their Android and iOS Mobile Apps.
You can download the app and register an account for FREE. During the registration process you will be able to:
- Choose from 30 domains to express your personality or profession
- Create an encrypted password for additional protection of your mailbox
- Create your own Security Questions
This version of the Secure Mail App will let you:
- Send and receive end-to-end encrypted emails between Secure Swiss Data users
- Send and receive emails with attachments (to both Secure Swiss Data and non-Secure Swiss Data users)
During the next several months they will be releasing more features for the Apps, as well as, the webmail App with the Productivity Features such as encrypted calendar, task manager, notes and secure file sharing.
Next planned feature to be released is the Encrypted attachments.