Despite the fact that instant messaging applications are becoming an increasingly popular means of communication on the network, e-mail continues to be actively used. In 2017, about 270 billion emails were sent, and by 2021 it is predicted that this number will reach 320 billion. Therefore, email protection continues to be a pressing issue.
Why is this causing so many problems?
Although you need to provide a username and password to access your account (although Yahoo is trying to increase security by allowing you to replace your regular password with an application-based key), email remains one of the least secure ways to communicate. Often it is compared to sending a postcard - anyone can read the contents of the message.
In fact, email accounts are hacked so many times that it can cause some panic. The network even has a website on which you can see if your email account has ever been hacked.
In fact, email accounts are not privately owned. This is due to the fact that it is not a direct link, but rather goes through several intermediaries. One e-mail message is transmitted through several servers, including Internet providers, as well as an email client, with several copies of the message stored on each server, and subsequent copies, as on the computers of the sender and recipient. Therefore, even if the letter is deleted, many more copies remain available.
Email today is starting to show that this technology is out of date. The first such message was sent back in 1971, and various security flaws in such a transmission are enough to transfer users to more modern, alternative means of communication. However, with some changes, it may be more secure. Email protection on the Internet can be done in one of the following ways.
Password protection
The first weak point, of course, is the password. If it includes the characters "1", "P @ ssw0rd" and "x", which fall into the list of 10 most common security codes, it is not surprising that some accounts are easily hacked. Users also fall into the trap of using the same usernames and passwords for multiple accounts, and this can lead to the fact that one hacker will be able to crack several accounts.
Be sure to choose longer and stronger passwords. Using software that can automatically generate them can help. Also, note that relying on passwords only is not secure and be sure to enable two-factor authentication. Ideally, this should be done through the application, and not just via SMS, so as not to become a victim of fake SIM cards.
It is worth noting that the international service Yahoo provides users with the ability to completely remove the password and one-time codes on demand through a mobile application to increase security. This is the simplest and most basic rule for protecting email messages.
General measures
Users should understand that email is not private communication. This is especially true for work emails that belong to your employer and that can be viewed when they are routed through the company’s network and servers.
For example, you send a work letter to the e-mail of the social welfare department. Be sure to confirm that your contact goes to the real address, and not to the spam version. Also make sure that you select “Reply” and “Reply to all” correctly when replying to a group email. In the case of the above example, check several times that you are sending a message to the correct email address (to protect the public), and not to a similar email.
Despite the fact that e-mail is a convenient and cross-platform service that is used by almost everyone, it is worth considering whether another way of communication can be more secure. Some instant messaging apps address privacy issues, including TextSecure for Android and Signal for iOS.
However, even encrypted applications can cause problems. Telegram, a popular messaging service that uses 256-bit encryption, has recently been removed from the App Store by Apple due to concerns about the spread of child pornography (although it was later returned). Even Facebook Messenger allows you to send encrypted messages that are permanently deleted so as not to leave traces.
Use VPN
Another option that should be considered for email protection is a VPN, which creates an encrypted “tunnel” for another server, where the data is decrypted before being sent to the Internet. Although the main reason for using a VPN is privacy, which can protect your emails from your ISP, your email client will still have an unencrypted copy, so it offers only limited protection.
Email Encryption
The best strategy for maintaining privacy and protecting email on the Internet is to encrypt it directly. In some cases, the email client you use may do this behind the scenes.
Gmail has offered encryption as the default setting since 2014 for users who send emails through Google apps or through the Chrome browser. However, emails are not encrypted if a different browser is used or if the recipient has an address other than Gmail, so this method has its limitations. On the other hand, Google has become the “big brother” of the Internet and is known for reading user posts in order to subsequently show them more relevant ads.
Microsoft's email client, Outlook, also offers encryption. Both the sender and the recipient must exchange digital signatures, which include a certificate and a public key. The digital signature also includes an electronic identifier that confirms the authenticity of the sender. However, this does not work either in Outlook.com or in the Windows Mail application.
There are several email services that have been developed for encryption. A free example is the open source Tutanota, which offers mobile apps for iOS and Android, as well as browser-based email. The disadvantage is that the people to whom you send emails will need to have an account on the same platform or provide a password to decrypt each email.
Another strategy for protecting information in email is to not actually use a permanent email address, but instead use a one-time email. The mail provider MailDrop offers free addresses just for this purpose. Users have a choice: either create their own address or let MailDrop assign them a random one. No registration or password is required here, which makes it ideal for sending an email to an unprotected recipient, but not for receiving mail.
Special applications
As already noted, most of the correspondence today is sent by email. But at the same time, it can also pose a potential threat to the privacy and security of users. Data loss and leakage of confidential information are among the most pressing problems for most users, and especially for business. For this purpose, software has been created that you can use to protect e-mail from modern threats.
Hushmail
Private-use Hushmail service allows users to protect their email in order to maintain the confidentiality of personal correspondence. Using this software, you can regain control of your personal data and enjoy a clean inbox without ads.
You can select the emails you want to send using the powerful encryption features of this tool, and this will lead to private and confidential conversations.
The key functions contained in this convenient application are expressed in the following:
- Hushmail Premium is an account for private use, ideal for users who need a single email address ending with @ hushmail.com, with access to their desktop, mobile phone and network.
- Hushmail Premium includes 10 GB of disk space and several levels of security.
The software uses OpenPGP encryption, which is guaranteed to protect the contents of your email and provides a secure connection between you and the servers.
When you use this tool, you are hiding your data, and this means that your emails will not be analyzed to display all types of advertising. You will be able to mask your email using a variety of aliases, which provides 100% protection against email spam.
The application provides specialized customer support, and any problems that you may encounter will be resolved by phone or email.
Hushmail encryption is automatic and you don’t need to think about how it works. There is also a two-step verification that can prevent unauthorized access to your account.
How to configure this service?
To protect your email, you will have to download this service. The first step in its application includes logging in using your username and password, and the second requires entering a verification code that will be sent to your phone or alternative email address. You can check out the additional features and capabilities of Hushmail on the official website of this software, and also try it to see how it works.
I2P-Bote
This is an I2P plugin that allows users to send and receive email in the most secure way. This is a fully decentralized and distributed system that does not require a server, since emails are stored in a distributed hash table.
Your messages will be automatically encrypted and digitally signed, and this ensures that no one will read them except the intended recipients. Third parties will be blocked. Thus, the application provides excellent data protection in email.
The best features that are included in this plugin include:
- You can create email identifiers with one click, and send your letters anonymously or under an identifier of your choice.
- The entire encryption and login process is transparent and you don't need to know anything about PGP.
- I2P-Bote is based on ElGamal (an elliptic curve in NTRU encryption).
You will also receive a delivery confirmation so that you can find out when your letter has reached the recipient. The user interface is easy to understand and use. In addition, it has also been translated into various languages.
In addition to the current functions, there are other options that will be implemented in the near future. They include user folders, identifiers shared on several devices, receiving messages through a “relay”, and other measures to counter traffic correlation.
You can install I2P-Bote in a couple of clicks and see how it works and whether it suits your security needs.
Bitmessage
Bitmessage service is a P2P type communication protocol that is used to send encrypted messages to another user, as well as to many subscribers. However, this protocol is decentralized and does not deserve much trust. In other words, you do not need to completely trust objects such as root certification authorities. You can use it to protect e-mail from spam, but do not use it to encrypt corporate and other similar messages. Bitmessage, in turn, is a similar protocol, but its reliability is many times higher. This is explained as follows.
Key features that Bitmessage is equipped with include:
- Bitmessage uses strong authentication, which means that the sender of the message cannot be tampered with and the data and its contents will be hidden.
- Users are free to browse the Python source code on Github, and they will have step-by-step instructions on how to run the source code on Windows and much more.
- The Bitmessage transfer mechanism is similar to the Bitcoin transaction and blocking system, which makes it an excellent means of email protection.
Users will receive all messages, and they will be responsible for trying to decode each message to see if it is mandatory.
You can familiarize yourself with additional features and benefits of using Bitmessage on the official website.
Retroshare
RetroShare, an anti-virus and anti-hacking application, was created back in 2006, and its main goal was to ensure secure communication and file sharing between friends. Since then, developers have joined the platform and significantly improved this software.
RetroShare creates encrypted connections with your recipients and ensures that no one spies on you. The service is completely decentralized, which means that RetroShare does not involve the use of central servers. The program is open source, and it is free. You will never have to deal with any costs, advertising or terms of service.
Given the above, you should consider the main functions and features provided by RetroShare:
- The service creates encrypted connections between you and your friends and family in order to build a network of computers.
- In addition, it provides a variety of distributed services, including channels, forums, and more.
- RetroShare guarantees users maximum security and anonymity while protecting email.
The program is available on Windows and other operating systems. Separately, it is worth noting that its use does not imply any additional costs or advertising. You can send text and images and discuss different things with people in decentralized chats. In addition, you can express your emotions with the help of emoticons and much more.
RetroShare also allows you to send encrypted messages to other network members and saves them for delivery while you are offline. With this program, you can exchange files with the entire network, even if they are large.
Your privacy and anonymity are fully guaranteed. You can find out even more interesting details about RetroShare by going to its official website.
Sendinc
Another equally useful service is Sendinc. This is a great way to send secure emails. It is fast, secure, and free, and it has many great security features and benefits. Here are the best ones:
- High-level encryption ensures that only you will see the messages you send.
- Sendinc does not store encryption keys, and only your recipients will be able to decrypt messages.
- You can easily send and receive encrypted emails in Microsoft Outlook.
The Sendinc add-in for Microsoft Outlook makes it really easy and convenient to send and receive encrypted e-mail messages, and sending them will be as simple as before. All you need to do except the usual procedures is to set the Send Secure checkbox.
Your recipients will not need any additional programs to view your messages. You can achieve and maintain compliance with GLBA, HIPAA, SOX, and more.
Sendinc allows you to integrate email encryption directly into your applications with the API. The platform presents three available plans:
Conclusion
. - , .
, , , .