Overview

The S/MIME solution (Corporate Email Encryption) from Secorio is the industry's first X.509 certificate management system with zero-touch provision. This system automatically provides digital identities for any application that uses traditional Windows devices or mobile devices. Many popular mail apps support S/MIME, so that email certificates can be rolled out on all devices in a few simple steps. For effective compliance with the GDPR, email encryption must be easy to provide for the administrator and must be seamless for employees.

Certificate

The S/MIME solution (Corporate Email Encryption) from Secorio offers:

  • Automatic zero-touch provision of private and public S/MIME certificates with a uniform management platform
  • Send the entire history of the encryption key to all email apps so that older emails can also be decrypted
  • Archiving of encryption keys so that accidentally destroyed or damaged keys can be restored (private key recovery).
  • Working with secure email gateways so that the company can continue to use mail scanners to perform its functions for encrypted and signed emails
  • Simple key management thanks to the integrated key wallet

Solution

Uniform administration platform

Both publicly trustworthy S/MIME certificates and private certificates that are intended exclusively for the company can be provided via a single administrator console. The console enables control over the registration of employees, servers and devices. It provides effortless detection, reporting, automatic renewal without employee involvement, and revocation when the employee leaves.

The console enables crypto-agility through on-demand renewal, including the ability to increase the cryptographic strength of the identity. The console automatically adopts all previously issued certificates to significantly improve delivery. The certificates issued by the company's Active Directory certificate service can then be automatically replaced with publicly trusted S/MIME certificates. Public S/MIME enables any S/MIME-enabled email application to verify the identity of the sender and also that the email and its attachments have not been changed during transmission. This applies in addition to the encryption of the email text and its attachments, without affecting the unencrypted email experience.