選單
中文 (繁體)

What does encrypting an email do?

Email encryption is a security measure that encodes an email message so that only the intended recipient can read it. What does encrypting an email do? Hiding, and specifically encrypting emails is a process designed to prevent cybercriminals, especially identity thieves, from obtaining valuable information that they can use for financial gain.

The email technology has long been a popular way to share information, but it also opens up the possibility of exposing confidential data to unauthorized access. This can include electronic employment contracts and pay slips for employees, business correspondence with a counterparty containing trade secrets, personal data of customers and employees, internal departmental reports and documentation, and other restricted information. Email encryption plays a key role in protecting sensitive information from such threats.

However, you cannot always be sure that an intruder will not gain access to the information contained in emails. Most emails are encrypted in transit, but stored in clear text. In other words, third parties, such as the owners of the mail server, can see their contents. This means that even though emails are encrypted during transmission, they can be vulnerable to access by third parties, such as server owners or hackers, who can potentially read the contents without the sender or receiver's knowledge.

This is why it is very important to use modern methods to protect information transmitted over the Internet — email encryption.

How email encryption works

To encrypt the email’s contents, plaintext (readable text) is encrypted into ciphertext (unreadable text). The data or text is encrypted with a unique encryption key and can only be decrypted with a unique decryption key.

The ciphertext is completely unreadable to humans and extremely difficult, if not impossible, to crack.

When you encrypt an email message, the entire message is converted into seemingly random, unreadable characters and numbers. Only the recipient can then decrypt the message. Of course, the recipient must have the decryption key.

To ensure that only the recipient can read the message, the parties can use either a symmetric or asymmetric encryption method.

In a nutshell, symmetric encryption is when the sender encrypts an email message and shares the key with the recipient — this can be done through different means of communication online, over the phone, or even in person. Symmetric encryption uses the same key to encrypt and decrypt the message.

A more secure but more complex encryption method is asymmetric encryption. Asymmetric encryption means that both parties have a set of keys: a private key and a public key.

Unlike symmetric encryption, which uses the same key to encrypt and decrypt, asymmetric encrypted messages cannot be decrypted with the same key that was used to encrypt them.

Messages encrypted with the public key can only be decrypted with the private key, and vice versa: messages encrypted with the private key can only be decrypted with the public key. The public and private keys are mathematically related.

The public key can be stored with your name and email address on a public server that anyone can access.

For example, you could find someone's public encryption key and email address, then send them an email and encrypt the email with the recipient's public key.

This process ensures that the email is unreadable (encrypted) in transit. It is encrypted and cannot be read by anyone who might try to intercept and eavesdrop on the message.

The only person who can decrypt the message is the recipient — using their private key, because the email has been encrypted with their public key.

There are many encryption algorithms used to protect data in emails. Let's take a look at the most common and widely used email encryption algorithms.

  • RSA (Rivest-Shamir-Adleman) is an asymmetric algorithm developed in 1977. It uses two keys, one public and one private. RSA provides a high level of security, but has a low speed for encrypting and decrypting large amounts of data.

  • AES (Advanced Encryption Standard) is a symmetric encryption algorithm developed in 2001. It offers high encryption and decryption speed and good resistance to hacking, but requires a shared secret key between sender and recipient.

  • DES (Data Encryption Standard) is a symmetric encryption algorithm developed in the 1970s. It was widely used in the past, but is now considered outdated and insecure.

  • Blowfish is a symmetric encryption algorithm developed in 1993. It offers high encryption and decryption speed and good resistance to hacking.

  • Twofish is a symmetric encryption algorithm developed in 1998. It is an improved version of the Blowfish algorithm and provides even greater resistance to hacking.

  • Triple DES is a symmetric encryption algorithm that is an enhanced version of DES. It uses three keys for encryption and provides a higher level of security than DES.

  • ChaCha20 is a symmetric encryption algorithm developed in 2008. It offers high encryption and decryption speed and good resistance to hacking. ChaCha20 is currently used in many applications and operating systems, including Google Chrome and Android.

Types of email encryption

  • PGP (Pretty Good Privacy) is a software solution for encrypting emails and ensuring the privacy of communications. It uses a combination of asymmetric and symmetric encryption.

  • S/MIME (Secure/Multipurpose Internet Mail Extensions) is a standard that enhances the security of the standard email protocol. It uses asymmetric encryption and digital certificates to ensure the security of email. S/MIME allows email senders and recipients to encrypt and decrypt messages, and to create and verify electronic signatures.

  • TLS is an encryption protocol that ensures secure data transmission via email for both incoming and outgoing messages. Its use helps prevent eavesdropping between email servers and maintains the privacy of messages as they move between email providers. All modern email services support TLS.

Encrypted vs unencrypted email

Unencrypted email is any email that is sent in plain text without any form of encryption. This means that the email content is not scrambled, allowing anyone who intercepts it to read the message in its original form.

Advantages of unencrypted email

  • Ease of use: Sending unencrypted email is simple and requires no additional steps or software.

  • Compatibility: All email providers can send and receive unencrypted email without compatibility issues.

Disadvantages of unencrypted email

  • Lack of privacy: Unencrypted email can be easily intercepted by malicious actors, including hackers and government agencies. This poses a significant risk to sensitive information such as personal details, financial data or confidential business communications.

  • Data integrity risks: Without encryption, email can be altered in transit without the knowledge of the sender or recipient, resulting in misinformation or compromised data.

Encrypted email uses cryptographic techniques to protect the email contentl, making it unreadable to anyone without the correct decryption key.

Advantages of encrypted email

  • Enhanced privacy: Encrypted email protects sensitive information from being read by unauthorized parties and ensures that only the intended recipients can access the email content.

  • Data integrity: Encryption can help verify that the message has not been altered in transit, ensuring that the email content remains authentic.

Disadvantages of encrypted email

  • Complexity: Setting up and managing encryption can be complicated and requires the use of specific software or tools. Both the sender and the recipient must have compatible encryption systems.

  • Usability issues: If users forget their decryption keys or passwords, they may permanently lose access to their email.

How to start encrypting your emails

Email encryption might seem daunting, but it's actually quite straightforward. Here's a breakdown of how to start:

  1. Choose an email encryption method

Start by choosing an encryption method that suits your needs. The two most common ones are:

  • S/MIME (Secure/Multipurpose Internet Mail Extensions): This is built into many email services such as Outlook and Apple Mail and requires a digital certificate.

  • PGP (Pretty Good Privacy): This method is often used with third-party apps or add-ons and gives you more control over your encryption keys.

  1. Get a digital certificate or encryption key
  • For S/MIME, you'll need a digital certificate, which acts as an ID for your email. You can get one from a trusted Certificate Authority (CA) such as DigiCert or GlobalSign.

  • For PGP, you need to create a key pair (a public and private key) using a tool or software such as GnuPG or an email client with PGP support.

  1. Install and configure encryption tools
  • For S/MIME: Once you have received your digital certificate, you will need to install it in your email client. Most email services have step-by-step guides to help you with this process.

  • For PGP: Install a PGP-compatible application or plugin (such as Gpg4win for Outlook or Mailvelope for Gmail). Import your encryption keys and configure the plugin to work with your email.

  1. Exchange keys or certificates with recipients
  • For encryption to work, both you and the person you're emailing need to exchange public keys (PGP) or digital certificates (S/MIME). This allows you to encrypt messages so that only the recipient with the correct key can decrypt them.
  1. Encrypt and send emails

Once everything is set up, sending an encrypted email is easy:

  • Compose your email as usual.

  • Select the encryption option (this may be a padlock icon or a menu option).

  • Make sure the recipient has the required certificate or public key.

  • Send your encrypted email, safe in the knowledge that it is protected from unauthorized access.

  1. Test and verify
  • Before relying on encryption for sensitive data, test it by sending an encrypted email to yourself or a trusted contact. This will ensure that everything is working correctly and that you can decrypt messages on the receiving end.

Conclusion

All in all, email encryption is an integral part of information security in today's world. It allows you to protect confidential information from unauthorized access and reduce the risk of data leakage. However, to achieve maximum effectiveness, it is necessary to comply with information security regulations and use advanced encryption technologies.

喜歡這篇文章嗎?
19,273 19273 使用者評論
極好的!

AdGuard for Windows

Windows 版 AdGuard 不只是廣告封鎖程式,它是集成所有讓您享受最佳網路體驗的主要功能的多用途工具。其可封鎖廣告和危險網站,加速網頁載入速度,並且保護兒童的線上安全。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,273 19273 使用者評論
極好的!

AdGuard for Mac

Mac 版 AdGuard 是一款獨一無二的專為 MacOS 設計的廣告封鎖程式。除了保護使用者免受瀏覽器和應用程式裡惱人廣告的侵擾外,應用程式還能保護使用者免受追蹤、網路釣魚和詐騙。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,273 19273 使用者評論
極好的!

AdGuard for Android

Android 版的 AdGuard 是一個用於安卓裝置的完美解決方案。與其他大多數廣告封鎖器不同,AdGuard 不需要 Root 權限,提供廣泛的應用程式管理選項。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,273 19273 使用者評論
極好的!

AdGuard for iOS

用於 iPhone 和 iPad 的最佳 iOS 廣告封鎖程式。AdGuard 可以清除 Safari 中的各種廣告,保護個人隱私,並加快頁面載入速度。iOS 版 AdGuard 廣告封鎖技術確保最高質量的過濾,並讓使用者同時使用多個過濾器。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,273 19273 使用者評論
極好的!

AdGuard 內容阻擋器

AdGuard 內容阻擋器將消除在支援內容阻擋器技術之行動瀏覽器中的各種各類廣告 — 即 Samsung 網際網路和 Yandex.Browser。雖然比 AdGuard for Android 更受限制,但它是免費的,易於安裝並仍提供高廣告封鎖品質。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,273 19273 使用者評論
極好的!

AdGuard 瀏覽器擴充功能

AdGuard 是有效地封鎖於全部網頁上的所有類型廣告之最快的和最輕量的廣告封鎖擴充功能!為您使用的瀏覽器選擇 AdGuard,然後取得無廣告的、快速的和安全的瀏覽。
19,273 19273 使用者評論
極好的!

AdGuard 助理

AdGuard 桌面應用程式的配套瀏覽器擴充功能。它為瀏覽器提供了自訂的元件阻止的功能,將網站列入允許清單或傳送報告等功能。
19,273 19273 使用者評論
極好的!

AdGuard DNS

AdGuard DNS 是一種不需要安裝任何的應用程式而封鎖網際網路廣告之極簡單的方式。它易於使用,完全地免費,被輕易地於任何的裝置上設置,並向您提供封鎖廣告、計數器、惡意網站和成人內容之最少必要的功能。
19,273 19273 使用者評論
極好的!

AdGuard Home

AdGuard Home 是一款用於封鎖廣告 & 追蹤之全網路範圍的軟體。在您設置它之後,它將涵蓋所有您的家用裝置,且為那您不需要任何的用戶端軟體。由於物聯網和連網裝置的興起,能夠控制您的整個網路變得越來越重要。
19,273 19273 使用者評論
極好的!

AdGuard Pro iOS 版

除了在 Safari 中之優秀的 iOS 廣告封鎖對普通版的用戶為已知的外,AdGuard Pro 提供很多功能。透過提供對自訂的 DNS 設定之存取,該應用程式允許您封鎖廣告、保護您的孩子免於線上成人內容並保護您個人的資料免於盜竊。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,273 19273 使用者評論
極好的!

AdGuard for Safari

自 Apple 開始強迫每位人使用該新的軟體開發套件(SDK)以來,用於 Safari 的廣告封鎖延伸功能處境艱難。AdGuard 延伸功能可以將高優質的廣告封鎖帶回 Safari。
19,273 19273 使用者評論
極好的!

AdGuard Temp Mail

免費的臨時電子郵件地址產生器,保持匿名性並保護個人隱私。您的主收件匣中沒有垃圾郵件!
19,273 19273 使用者評論
極好的!

AdGuard Android TV 版

Android TV 版 AdGuard 是唯一一款能封鎖廣告、保護隱私並充當智慧電視防火墻的應用程式。取得網路威脅警告,使用安全 DNS,並受益於加密流量。有了安全性和零廣告的使用體驗,使用者就可以盡情享受最喜愛的節目了!
已開始下載 AdGuard 點擊箭頭所指示的檔案開始安裝 AdGuard。 選擇"開啟"並點擊"確定",然後等待該檔案被下載。在被打開的視窗中,拖曳 AdGuard 圖像到"應用程式"檔案夾中。感謝您選擇 AdGuard! 選擇"開啟"並點擊"確定",然後等待該檔案被下載。在被打開的視窗中,點擊"安裝"。感謝您選擇 AdGuard!
在行動裝置上安裝 AdGuard