Best Email Encryption Software
There’s a lot of talk going on about data encryption. Nearly every day we hear about email leaks and we start to wonder if our data is secure. And rightly so! Those who ignore such vital concerns are often the hacker’s first victims. However, those who do give it some more thought use some of the best email encryption software on the market and keep their data secure. What should you pick? Let’s go through the best available options.
Is there a need for more email encryption?
A huge majority of emails sent over the internet are transferred via the SMTP protocol. Old technology serves the purpose well but offers little to no security. This means that your emails are often transmitted between servers in plain text mode. If there’s a breach at any stage, all the information will be easily accessible to hackers.
Of course, ever since the 80s, efforts have been made to address this problem. New methods, such as SSL and TLS, have been introduced for encrypting your emails. These days, all major clients provide some form of encryption. Things have definitely improved.
But your emails are still far from safe. SSL/TLS only encrypts emails on their way from a client to an outgoing server. At this point, they’re decrypted and processed further in plain text, making them susceptible to attack. SSL/TLS also doesn’t encrypt emails sitting in your inbox or your receiver’s. If security is breached, all sensitive data will easily be exposed.
Another caveat is that the SSL/TLS used by nearly all clients is, by default, opportunistic. This means that when a transmission is launched, an email client uses a command called STARTTLS to try to upgrade the connection to a secured one. However, if it fails due to a timeout, lack of server support for this solution, or just about any error, the transmission will be processed in plain text. It may be fine for casual messaging, but for companies or governments sending heavily classified data over emails, it’s too much.
If you’re interested to read more about this, check out our article on SMTP Security.
What is email encryption software?
To counter the imperfections of existing encryption methods companies have built lots of sophisticated tools for email and data encryption. They incorporate many different techniques for securing emails, which can be split into two main categories.
Enterprise email encryption platforms are typically used for internal communication in large corporations or between governmental facilities. These platforms only work if both a sender and recipient use the same encryption software. If you were to encrypt an email this way and send it to an external receiver, they would have no way of deciphering it.
These solutions typically rely on public and private keys that they distribute in a network. A message is encrypted with a user’s public key and each of the recipients is able to decrypt an email using the corresponding private keys. Of course, the whole operation happens under the hood and is invisible to actual users.
The advantage for companies is that they can manage their own keys without sharing them with 3rd parties (such as encryption platforms themselves). The disadvantage is that if something goes wrong and the keys are no longer able to be retrieved, the messages encrypted with them won’t be either.
Although some of these solutions can be installed, most work as hosted email encryption platforms. Due to their universality and platform-agnosticism, we recommend using them moving forward.
On the other end of the spectrum, there are webmail services for email encryption. While the enterprise solutions are often difficult to set up and maintain, webmails are (generally) as easy to use as regular Gmail or Yahoo! accounts.
Webmail also relies on public and private keys. Some tools store them for you and automatically exchange them with your recipients. This makes for a pretty seamless experience.
Other web-based tools hand you the task of managing keys. This way, no governments are able to decrypt your data but you’re in charge of storing the keys and sharing them with the recipient(s).
Best hosted email encryption services
Let’s now discuss our top picks for email encryption software in 2020. There are plenty to choose from!
ProtonMail
ProtonMail is a popular free email encryption software. It’s actually an email client that works like any other software of this type. There’s just one “tiny” difference: all emails sent from ProtonMail account are end-to-end encrypted. The same goes for emails accepted from other senders. They remain encrypted while in an inbox.
ProtonMail was launched by a group of scientists and developers concerned about user privacy. They aim to provide a platform where users can freely exchange information and are protected by strict Swiss privacy laws. They have managed to attract millions of users craving for a secure way to send emails.
The account is free with 500MB of storage and allows you to send up to 150 emails per day. Paid plans come with a higher capacity and more features (and they’re quite inexpensive too). Web and mobile apps are available.
Tutanota
Right across the northern border from the Proton guys, there’s Tutanota hailing from Germany.
Tutanota is also a web service with end-to-end encryption for all its emails. The platform encrypts all elements of a message, including a subject, body and attachments. It also removes your IP address from sent messages so that they can’t be tracked down to any specific location.
Tutanota is available as a web service and via native iOS and Android apps. The basic plan is absolutely free of charge, while premium and business setups come with a recurring fee.
Proofpoint
Proofpoint is an enterprise-level solution primarily suitable for large companies and organizations. It’s available as a Cloud service but can also be implemented on-site when required.
Proofpoint comes with two-way encryption. All of your outgoing emails are end-to-end encrypted, while the same software protects you from potential attacks with incoming emails. The software offers policy-driven encryption that happens entirely under the hood. On top of that, features like data loss protection or streamlined storage are also available.
The company doesn’t offer fixed pricing, each client can expect to be priced individually according to the features and capacity needed.
Wrapping up
This wraps up our summary of the encryption tools we recommend in the upcoming year. We hope you enjoyed it and to see you next time. We write a lot about emails and their security, in particular. Follow our blog so you never miss a thing. Take care!
Article by
Piotr Malek
Technical Content Writer at Mailtrap
We appreciate you chose this part of the article to know what are the best email encryption tools. Follow Mailtrap Blog for more articles on the related topics!