Ciphire Encrypted Mail
Author: Glenn Slaven21 Jan
Been toying with how to securely transmit emails lately. As half (or more than, actually) of our company resides in the UK, and we conduct most of our communications via email (when not using Skype), secure email is a concern. We sometimes need to discuss client’s requests, which can involved the inner working of their business, or perhaps names, addresses & phone numbers that probably shouldn’t be public knowlege. Also there are things like design mockups and templates that we wouldn’t want someone else to get their hands on.
Unfortunately, making email secure is a real PITA with most tools requiring you to setup a public/private key system and/or muck around with non-trivial settings in your mail client. However, today Wired News has an article on a new program which is just in beta at the moment called Ciphire. It’s free for personal, non-profit, educational & press use, and a commercial product will be available later this year. I thought I’d give it a go, seeing as the Wired article was full of praise:
Setup was a snap: Just download and install the client, choose which e-mail addresses you want to associate with Ciphire, enter a password, and the application sets itself up.
Working with the program is just as simple. When two people using the Ciphire client exchange e-mails, the client intercepts e-mail right after the Send button is pressed, and before it leaves the computer. The recipient’s security certificate is retrieved at the Ciphire Certificate Directory, security checks are performed, and then the message and any attachments are encrypted with the recipient’s key.
Incoming e-mail is also intercepted before it appears in a user’s inbox, the message is decrypted (if necessary) and the sender is authenticated using the corresponding certificate from the Ciphire Certificate Directory.
Now that’s the way things are supposed to work. Remember when marketing was telling us all that technology was going to make our lives less complex? Don’t see too much of that happening. But this is indeed simple and, once installed, pretty much transparent. The install was, in fact, seemless. I didn’t need to deviate from any of the default choices and the most complex thing I needed to do was choose a password & then hit ‘Get Mail’ in Thunderbird twice to receice the two confirmation email used to setup the public & private keys.
The more observant of you will have noticed I said Thunderbird. That’s right, they’ve even gone to the trouble of making this work on programs other than Outlook. Infact, because it doesn’t integrate with the client, but sits between the client & the mail server, it should work with any mail program using either POP or IMAP!
The other helpful thing is the extensive online help, including forums, how-to guides (including a general intro to the public/private key concept) and an online form for submitting bugs.
The great thing about this program is that you can forget that it’s running. The only thing I’ve noticed is that it takes about a second longer for my emails to finish sending, but this is very minor & may very well go away with the final release version. The fact that you don’t have to keep track of who can read your encrypted mail is good too. Because the system knows who has Ciphire setup, it decides for you whether to encrypt the email or not. If the receipient can’t receive encrypted mail, it just signs the mail so that the receipient can verifiy that you are the sender (which is better than nothing).
All in all, this program looks good, and when the commercial product comes out I think I’ll be looking closely at it to see whether we can use it here, especially as this will include a mail gateway and/or proxy.
[hat tip Gadgetopia for the Wired article link]
- Filed under: Uncategorized, Tags: Security
Add New Comment
Thanks. Your comment is awaiting approval by a moderator.
Do you already have an account? Log in and claim this comment.
Add New Comment
Trackbacks