Traditionally, emails are sent unencrypted to an email server before they are retrieved by the receiver giving the email server full access to the contents of all messages. Fortunately, there are email technologies that prevent the email server from having unlimited access to messages. These technologies use client side encryption allowing messages to be sent securely from the sender to the receiver. This allows true end-to-end security.
How? Well, let us explain.
Client’s applications are the programs that ‘talk’ to email servers. For example, these are the websites you log into or the desktop applications that you use to read your email. Unlike traditional email, client side encrypted email technologies encrypt messages on the client’s application before sending them to the email server. This means that the email server or people with access to it have virtually zero information about the contents of the messages on the servers.
Messages are encrypted in such a way that only the intended recipient has the ability to unencrypt them. This is done using a technology widely used throughout the Internet know as Public Key Cryptography. Public Key Cryptography is a fairly advanced but well understood technology used to send information securely over the Internet.
Using Public Key Cryptography on a client’s application allows true end-to-end client side encryption that fixes the most fundamental insecurities in email. SCRYPTmail has a working solution that performs the same protection technique outlined in this article, and we are working incessantly to make it better! We believe that secure communication over the Internet is a fundamental right and should be the status quo.