Role of Cisco Secure Email Encryption Service in Encryption
The service manages the following elements of encryption:
-
Recipient Enrollment— Recipients of a Secure Message (an encrypted message) must enroll with the service the first time they open an envelope, unless the message is sent with low security. Enrollment is free of charge.
-
Authentication— Enrolled users use Single Sign-On (SSO) or provide a password to open Secure Messages and read encrypted messages.
-
Encryption Keys— An encryption key is created for each encrypted message. When enrolled recipient enter their password in the Secure Message, the service sends the decryption key that opens the envelope.
-
Message Expiration and Locking— Enrolled users can set the expiration date and control message locking for the encrypted messages that they send. Corporate account administrators can control expiration dates and message locking for all encrypted messages sent using the corporate account.
-
Secure Forward and Secure Reply Messages—Depending on the corporate account configuration, recipients may be able to forward and reply to encrypted messages using encryption. Encryption Service handles the encryption for Secure Forward and Secure Reply messages.
The following figure shows how Encryption Service works in conjunction with a Cisco Secure Email Gateway. The service supplies the decryption key to the registered recipient of a encrypted message.
The above figure explains the following process:
Procedure
Step 1 |
The Cisco Secure Email Gateway uses encryption to encrypt a message and deliver it. |
||
Step 2 |
The recipient enters the Encryption Service password in the Secure Message.
|
||
Step 3 |
Encryption Service supplies the decryption key that opens the envelope. |
||
Step 4 |
The recipient’s web browser displays the decrypted message. |