Google announced on Friday that end-to-end encryption (E2EE) is coming soon to GMail web users. Google is now accepting applications to join the beta, which will allow GMail Workspace users to send and receive encrypted emails within and outside their domain. Workspace is the productivity suite formerly known as GSuite.
The new capability, what Google refers to as client-side encryption, will ensure that sensitive data in email bodies and attachments will remain unreadable even to Google servers and support.
The capability will not encrypt the header of the email, including the subject, timestamps, and recipients list, according to the Google support site.
Sending an encrypted email is easy, but requires that the sender and all recipients have CSE turned on and valid certificates. If any recipients are missing a valid certificate, the sender will not be able to send an encrypted email.
When attempting to decrypt an encrypted email, users will see an “Encrypted message” below the sender’s name.
To apply for the GMail client-side encryption beta, you must have a Google Workspace Enterprise Plus, Education Plus, or Education Standard license. Free, consumer Workspace accounts are not applicable.
Google lists the following capabilities of CSE GMail it is asking beta testers to try:
- Send and receive encrypted messages within your organization
- Send emails to external recipients
- Share digital signatures with external recipients
- Include quoted emails in a thread
- Receive emails from other mail clients (for example, Microsoft Outlook and Apple Mail)
- Attach a file
- Paste an image
- Forward messages
- Save encrypted drafts
- Undo send
Those interested can apply for the beta on Google’s website.
Disclaimer: The author of this article is a current employee of Google. This article does not represent the views or opinions of his employer and is not meant to be an official statement for Google, or Google Cloud.
Discover more from Cybersecurity Careers Blog
Subscribe to get the latest posts sent to your email.