No certificate? No problem.
With all the data breaches and cyber threats that we have witnessed lately, it’s no wonder that cyber security is a hot topic for governments, enterprises of all sizes and last but not least, consumers.
It is interesting to see how some governments in Northern Europe have taken initiatives to protect electronic privacy and have issued public key certificates to all their citizens, so that they can have a secure, unique online identity. These certificates are used for remote authentication, digital signature, e-commerce transactions including banking, and email encryption.
The consumerization of email encryption is happening and this is why more and more governments are creating directories of certificates to ensure secure online information exchange. Email encryption plays a very important part in any data security strategy, however, only a few solutions are flexible enough to transparently integrate into users’ everyday electronic communication.
Owen Barder from the Centre for Global Development comments on email encryption in Denmark in his blog entitled “Encryption and the King of Denmark”:
“I know very few other people who are set up to receive encrypted emails, and hardly anybody ever sends me anything encrypted. Why is that? It isn’t that difficult to set up GPG. One reason is that there is apparently no way to go through all your contacts automatically and check if they have published a public key that you can use to send them messages. So if my friends have public keys, I would have to find that out manually”.
You definitely don’t have to find the keys manually. OneWorld, our email encryption solution, can be configured to do all that for you. With absolutely no user intervention, OneWorld detects the availability of a certificate in the local directory and publicly available LDAP directories.
No certificate? No problem. OneWorld will find an alternative delivery method for the encrypted message.
When a user sends an email, OneWorld looks up the published key for the Recipient and encrypts with it, so that the message can be decrypted once it is received. The Sender does not need to have any certificates, keys, or software, since the encryption occurs in OneWorld. In case the published public key for the recipient does NOT exist, OneWorld will automatically switch to either a Web Portal or a PDF delivery method.
The same is true for looking up PGP keys. OneWorld can deliver encrypted messages and data right to the recipient’s inbox with their known PGP certificates. The sender does not need to have any certificates, keys, or software. OneWorld will find the PGP certificates in the local directory and publicly available LDAP directories.
The beauty of OneWorld is that it is all about flexibility and interoperability. It is like a Swiss army knife, it can be configured to look up various directories and to establish the best method of delivery based on sender preference and the real-time security context. As we mentioned in a previous blog, OneWorld has the ability to check and adapt in real time to the surroundings in order to deliver the message securely.