Digitally signed emails. What is it and how do digital signatures work?
Digital signatures and end-to-end email encryption
End-to-end encryption protect your message privacy, while digital signatures provide additional security attributes:
- Sender verification: the sender is who he/she claims to be
- Integrity: The message was not altered during transit
- Non-repudiation: the sender cannot deny having sent the message
A digital signature is similar to a handwritten signature. However it offers far more security.
How do Digital signatures work?
A digital signature only requires the sender (the signer) to have cryptographic keys (a private key and a public key). The sender signs the message locally on his/her device (using sender’s private key). Furthermore, the receiver verifies it on his device by using sender’s public key. The process works as follows:
- Alice (sender) generates a key pair and shares her public key with Bob (a one-time pre-requisite).
- Alice signs the message using her private key in her device and sends the message to Bob.
- Bob receives the signed message on his device and verifies the signature using Alice’s public key.
Digital signatures are commonly referred to as ‘Electronic signatures’. They are widely used in both personal and professional context, for instance.
How to send digitally signed emails using Mailfence
Furthermore, you can check our user guide for more details on how to sign OR sign & encrypt your messages. In addition you can check and perform other key management operations.
Even more easy with our ‘Integrated key store’
Mailfence has pioneered OpenPGP end-to-end email encryption and digital signatures. This makes it easy-to-use.
With an integrated account key store, users can generate, export or import a key pair. For instance they can also manage their key or add recipient’s public keys. All of this without any external plugin or add-on.
This gives users remarkable control over their privacy. In addition, we offer complete reversibility. In this case a user can export his/her key pair as well as all the other data stored in his/her account such as calendar, contacts and documents.
Digitally signing without end-to-end encryption
In a recent post we explained that digital signatures combined with end-to-end encryption increases security. For instance it can also be useful to sign email digitally without encrypting them:
- Digitally signing emails with attachments gives the assurance to receiver of the email. This assures that both the content and the attachment have not been tampered with during transit. This increases the legal value of the email, for instance.
- Consent with legal & regulatory requirements in various environments (for e.g., sales contracts, vendor & supplier agreements, …)
Wanna learn more about OpenPGP digital signature best practices?
At Mailfence, we have designed an easy to use end-to-end encrypted email. We believe that users have an absolute and irrevocable right to internet privacy. In case you want to leave either Yahoo Mail or Gmail, click on Yahoo Mail or Gmail migration to Mailfence .
– Mailfence Team