Google has begun to implement a new end -to -end encryption model in Gmail (E2EE), which must facilitate its use by anyone. It will be available first for business users, but the Internet giant intends to expand it later to personal accounts and even other services such as Microsoft outlook.
End -to -end encryption is an essential security feature in the digital world and is used by multiple services and applications. But in Gmail, the most used email on the planet, It is not available to anyone and ends up being a nightmare of certificates and administrative problems.
While companies have the option to configure the S/MIME protocol (Safe and Multipurpose Internet email extensions) to send signed messages and digitally encrypted, this requires significant resourcesincluding the implementation of certificates for all users and their exchange before sending emails.
New end -to -end encryption in Gmail
The new model will facilitate users’ lives Without causing additional stress to IT administrators, since – in the future – it can be sent completely encrypted emails to any user in any email service or platform, without having to worry about complex certificate requirements.
“This capacity, which requires minimal efforts for both equipment and end users, eliminates the complexity of traditional IT and the experiences of deficient user of existing solutions, while preserving the sovereignty of the data, privacy and improved security controls”, They explain from Google.
Google is implementing the new service (still in beta phase) From this week for business users of Google Workspace within its own organization. In the coming weeks, users can send electronic end -to -end emails (E2EE) to any Gmail input tray and, at the end of this year, to any email input tray from other suppliers.
Enable the new end -to -end encryption model in Gmail It will be very simplesince users only have to activate the “additional encryption” option when writing the message. The mail will decipher automatically if the recipient is a Gmail user with a business or personal account.
The recipients who use the Gmail Google mobile application or email customers who are not from Gmail will receive a link to log in and see email in a restricted version of the application. Subsequently, they can use a Google Workspace guest account to see and answer the encrypted message.
Gmail’s new E2EE capacity is driven by technical control of encryption on the client side (CSE) of the work space that allows organizations Use encryption keys stored outside Google servers and under your control to protect emails and confidential documents. This guarantees that all the transmitted data is encrypted in the client before being sent to the Google cloud storage, which helps to meet the regulatory requirements, such as the sovereignty of the data and the export controls, by making them indecipherable for Google and third -party entities.
