We’re obsessed with email security…
so you don’t have to be.
Security is complicated.
It’s also filled with choices between what is convenient and what is secure.
We worked very hard so you could have both.
True End-to-End Encryption with Zero Access
Every SecureMyEmail user generates a unique and industry-leading 4096-bit key pair during setup. Using these keys, your email and attachments are seamlessly encrypted before they leave your device and can only be decrypted by your recipients. Nobody else…not your internet company, your email provider, identity thieves, overreaching governments, or even us, can ever read your encrypted email or attachments.
Native Encryption Software. Not Webmail.
Most secure email providers force you to use hosted webmail because it’s easier for them to deploy, not because it’s the most secure method. Webmail requires the provider to store your private decryption key on their servers. It also opens the possibility that every time you reload your browser, you may be being served a different version of the software. SecureMyEmail uses native software, not webmail, to ensure the highest level of security for your email and attachments.
Your private decryption key doesn’t need to leave your device.
With encrypted email, your private key is everything. It, plus your secret passphrase, is what guarantees that only you can decrypt your email and nobody else. Unlike others, with SecureMyEmail, your private key is generated on your device and can stay there — not on our servers. And, if you do decide to move it, to set up another device or some other reason, we offer you multiple secure options to do so.
Cryptographic Verification of the Sender
Every email sent with SecureMyEmail can be “signed” with a unique private key. This assures the email has not been tampered with en route by a Man-in-the-middle.
Enhanced Identity Verification and Protection via Social Authentication
A big part of online communication is trust. You need to make certain that email belongs to the person or organization you believe it does. To ensure that you can, we modernized the legacy PGP “Web of Trust” by incorporating social network methodology, including social networks themselves. Users can authenticate to their Facebook, Twitter, or LinkedIn account for their contacts to verify against. Community-sourced trust levels and checks are built in. This keeps impersonators and spearphishers on the outside where they belong.
Standards-based and PGP-compatible
SecureMyEmail uses OpenPGP at its core. We religiously followed the IETF’s RFC 4880 to help ensure compatibility with legacy PGP keys and programs. We even added methods through which PGP users can exchange keys with SecureMyEmail users or import their current PGP keys into SecureMyEmail if they wish. Users may also export their keys into other PGP-compliant programs, or provide their public key to websites, such as Facebook, to encrypt communications.
Incorporated and Hosted in Switzerland
SecureMyEmail servers are built and hosted in Swiss data centers with carrier-grade physical security and uninterruptible power. They are managed by our Swiss corporation, Better World Security GmbH, in the Canton of Geneva. This means your SecureMyEmail data is protected not only at a technical and physical level, but by what are considered to be the strongest privacy protection laws in the world.
Connections between your devices and SecureMyEmail systems are reinforced with multiple layers of modern security best practices. To start, our API servers use Transport Layer Security (TLS). TLS replaces SSL and provides access to advanced cipher suites that support elliptical curve cryptography and AEAD block cipher modes, including the very nice GCM cipher suites. We additionally deployed Ephemeral Key Support to enable “perfect forward secrecy,” and HSTS on all our API servers. This zealousness ensures all your interactions with SecureMyEmail systems are safe, private, and secure.
Advanced Crypto Features
As simple as it is to use, SecureMyEmail has advanced features for original crypto gangstas. 4096-bit keys, active key management, on-demand key regeneration, importing and exporting of PGP keys, and much more, are all included for your enjoyment under the Advanced Menu.
Easy to Use
Is “easy” a security feature? Absolutely. When encryption is complicated, it’s not used or used incorrectly. That’s dangerous. SecureMyEmail is so easy to use it will popularize encrypted email and make us all safer as a result.