E-Mail Encryption

Effective protective measures must be taken in order to ensure secure transmission of e-mails containing sensitive and confidential information. The following objectives must be achieved:

  • the message sent must be viewable only to the authorized recipient
  • the content must not be editable

With its appliance-based, e-mail security solution, SEPPmail provides the perfect solution to this need. SEPPmail’s patented and groundbreaking encryption and communication system, Secure E-Mail Gateways, complies with the highest security standards, achieves short introduction times, reduced administration requirements and user-friendly application – for both the sender and recipient of e-mail messages.

The Secure E-Mail Gateway von SEPPmail supports the following encryption processes for protecting your email messages:


Patented GINA Encryption

The patented two factor GINA process ensures that recipients of encrypted messages do not need any specialized software or encryption programs on their computer system. This allows for secure message exchange with any number of recipients worldwide.

This achieves significantly increased protection compared with conventional procedures. This feature is one of the reasons why the full-scale solution is audit-compliant and meets the current compliance requirements (SOX, HIPAA, PCI, BASEL II). The system application is uniquely straightforward. The look and feel of the system is comparable with a user-friendly webmail application.

The messages are delivered to the recipient in full. This means that the required storage space on the owners infrastrucutre is minimal. It also allows for the issue of authenticated read receipts and consequently supports the “registered e-mail” function.

The GINA process is worldwide unique and multiple awarded. It relies on the newest and most secure security standards and allows the highly complex security process to become fairly easy and usable by anyone with a normal email program. Read more about the patented GINA encryption process.


Domain Encryption

This is a fully transparent asymetric encryption method from machine to machine. Through the simple key exchange of two installed enryption machines this process can encrypt traffic withou any user interaction. This results in a completely secured email exchange between two companies or two branch offices. It is also possible to integrate domain keys from other manufacturers (e.g. S/MIME or PGP).

Managed Domain Service

This is a special form of the domain encryption unique to the SEPPmail network. By being part of this network a SEPPmail Secure Email Gateway automatically checks public keys of over 5000 email domains worldwide and enrypts the whole traffic to these companies automatically and out of the box right after installation. Read more about managed domain encryption.


OpenPGP Encryption

OpenPGP is an encryption standard that provides cryptographic privacy and authentication for data communication. OpenPGP is used for signing, encrypting, and decrypting texts to increase the security of e-mail communications. Phil Zimmermann developed  this standard in 1991. The protocol is defined in the RFC 4880 document for encrypting and decrypting data. The Secure E-Mail Gateway uses this technology fully transparent for the user. The public keys are stored centrally on the gateway and the encryption happens automatically in the background without any intercation of the user.


S/MIME Encryption

S/MIME (Secure/Multipurpose Internet Mail Extensions) is a standard for public key encryption and signing of MIME data. S/MIME is based on RFC 3369. It was originally developed by RSA Data Security Inc. and the original specification used the IETF MIME specification with the de facto industry standard PKCS#7 secure message format. S/MIME provides the following cryptographic security services for electronic messaging applications including authentication, message integrity, non-repudiation of origin, privacy and data security.

The basis are S/MIME certificates that are trusted by official certification authorities (CA). The Secure E-Mail Gateway contains a whole public key infrastructure (PKI) to manage these certificates. Certificates of certified CAs will be automatically detached of email signatures and integrated into the PKI. From then on all outgoing emails to this person are encrypted automatically. SEPPmail’s  Secure E-Mail Gateway provides connectors to different selected CA’s for automated generation of certificates.


TLS Encryption

Transport Layer Security (TLS) is a cryptographic protocol that provides communications security over a computer network. Several versions of the protocols find widespread use in applications such as web browsing, email, and instant messaging. The TLS protocol aims primarily to provide privacy and data integrity between two communicating computer applications. As the name states it uses transport encryption and not content envryption and is used for securing the communication to the next network hub. It does not guarantee a complete end-to-end encryption to the final server of the receipient.