Apr 25, 2012

Email Encryption, Made Idiotically Easy

7 Comments · Posted by Robert Ambrogi in General

Do you encrypt confidential client email? You should, of course. But do you? The problem with encryption is that it can be cumbersome. In fact, both encryption and decryption can be a hassle.

Now there is a free application that makes encrypting and decrypting emails so easy that, well, even a lawyer can do it. Called Enlocked, it works with Outlook, web-based email clients and even Apple and Android mobile devices.

Enlocked adds a "Send Secure" button in Outlook.

To use it with Outlook, simply download the plugin, install it and restart Outlook. Now, when you compose an email, a new button appears on the tool bar, “Send Secure.” Compose your email as you normally would. When you’re ready to send it, use this new button. Your email is encrypted and sent.

Of course, encryption requires decryption at the other end. To read your email, the recipient will also have to have the plug-in installed. If you send an email to someone who has not installed Enlocked, then he or she automatically receives a separate email explaining that they are about to receive an encrypted message and describing how to install the app in order to read it. Recipients no longer receive this message once they install the app.

Once the recipient has installed Enlocked, then he or she is able to read your encrypted email just as any other email. The decryption is seamless and invisible.

For Web-based email programs, such as Gmail or Hotmail, Enlocked provides browser extensions. Extensions are available for Internet Explorer, Chrome, Firefox and Safari.

For mobile devices, Enlocked has apps for the iPhone, iPad and Android. A BlackBerry app is “coming soon,” the website says.

You can install Enlocked on as many devices and in as many browsers as you like. Besides installing it in Outlook, I also installed the Chrome extension and tried it in Gmail. Just as in Outlook, when you compose a message in Gmail, a new button appears, “Send Secured.”

Worth noting is that Enlocked uses the OAuth protocol to work with your email. This lets it work with your data without ever having direct access to your data or to your email passwords. If you should ever lose a device, then you can block access to encrypted messages on the device simply by changing your email password.

For encryption, Enlocked uses PGP, which is the original and, safe to say, most trusted encryption program.

Tags: No tags

7 comments

  • Email Encryption, Made Idiotically Easy · Robert Ambrogi's LawSites | Encryption & Secure · April 25, 2012 at 7:44 pm

    [...] more here: Email Encryption, Made Idiotically Easy · Robert Ambrogi's LawSites Categories: Uncategorized Tags: apple, called-enlocked, enlocked, free-application, [...]

    Reply

  • Author comment by digiPost · April 26, 2012 at 3:06 pm

    I am certainly in favour of users encrypting confidential information, especially when communicating via email. Email is the equivalent of a postcard in the post, information, at some point may be sent without protection, which means people en route will be able to read it.

    User adoption is unusually low for secure email but with more publicity and exposure to the risks hopefully we will see some change in this space.

    I believe the software that does not depend on proprietary tools like Outlook and even a plugin will be more successful in contributing to adoption. Web services that allow senders and recipients to use their existing email address are out there today.

    Reply

  • James Swede · May 23, 2012 at 3:32 am

    This is excellent Robert, many thanks, a really good resource.

    Reply

  • Dan · July 6, 2012 at 10:15 pm

    Read Enlocked’s fine print!

    Enlocked requires that all of your e-mails go to Enlocked’s servers before encryption/decryption takes place, and Enlocked can therefore see your message in plain text.

    So you need to trust Enlocked, and be OK with their ability to read all of your e-mails.

    I’m not saying this is a bad way to encrypt/decrypt, but it’s a far cry from an actual end-to-end encryption/decryption solution, where no one but you and the recipient can ever see the message.

    Happy encrypting!

    Reply

    • Robert · January 8, 2014 at 10:32 am

      > Enlocked requires that all of your e-mails go to
      > Enlocked’s servers before encryption/decryption
      > takes place

      I was wondering how the sender got the receiver’s public key before they had one!

      Reply

  • Update on Enlocked, the Easy Email Encryption Tool · Robert Ambrogi's LawSites · December 10, 2012 at 9:36 am

    [...] Ambrogi in GeneralLast April, I wrote about Enlocked, an application that I described as making email encryption idiotically easy. Enlock is a plug-in you add to your email client — whether it is a desktop client such as [...]

    Reply

  • Encrypting Email with Enlocked | Law Technology Today · February 11, 2013 at 9:33 am

    [...] I was therefore excited to read Robert Ambrogi’s posts at LawSitesblog.com – Email Encryption, Made Idiotically Easy and Update on Enlocked, the Easy Email Encryption Tool, which brought to my attention Enlocked. [...]

    Reply

Share your comments