Google Adds End-To-End Encryption To Gmail On The Web

Google has made it clear that it’s picking up the pace in terms of beefing up security measures regarding Gmail on the web.

Hence, the tech giant has recently opted to roll out end-to-end encryption to its Gmail app on the web. This enables users on Google Workspace to send out and receive encrypted emails both within your domain and outside of it.


In case you didn’t already know, a feature known as E2EE which is the name reserved for client-side encryption had been available for many people on Google Drive, Google Sheets, Google Docs, Slides, Meet, and Calendar.

Hence, after it does end up getting enabled, the client-side encryption of Gmail would ensure that all types of sensitive data was delivered as a part of the body of an email and its attachment. This cannot get decrypted by the servers of the firm. Therefore, all headers for the email can’t be encrypted. And that entails the likes of the subject, list of recipients, and any timestamps as well.

Alongside the Google CSE, all sorts of content get encrypted and are handled really well in the client’s browser before the data gets transmitted or even stored inside the Drive’s storage that’s based on cloud technology. The company explained more such details on the support website.

In this way, the company’s servers cannot give anyone access to encryption keys or even go about decrypting data. But once the CSE gets set up, you can go on further and select which users create client-side content that’s encrypted and share it both internally as well as externally.

For now, the beta version of Gmail E2EE is getting launched for Google Workspace Enterprise Plus, Education Standard, and Education Plus.

They can end up applying for the likes of beta until the end of January of next year by simply adding the Gmail CSE Beta Test Application which should entail the email ID, Project ID, and the domains for any test groups involved.

The firm mentioned how such features aren’t yet found for users having personal accounts or Workspace Essentials, Business Plus, Business Standards, Education, Nonprofits, and Frontline amongst others.

After Google sends out an email to confirm that such an account is ready, the admin can then set out a Gmail CSE for the respective user by going through a procedure that sets up an environment and prepares certificates for every user in that particular test while configuring a key service as well as an identity provider.

This feature would end up being taken off through default means and can get enabled by clicking on the domain, and the organizational unit, and then pressing the button for group levels. After getting enabled, you may simply toggle through the E2EE for every message by simply pressing the lock icon that’s present near to Recipients field and pressing ‘Turn On’. This is located under the button for ‘Additional Encryption’.

Once this is activated, simply create a message on your Gmail and include attachments for emails as you end up doing normally.

Google mentioned today how its Workspace already makes use of the latest standards when it comes down to the world of cryptography that are used to encrypt the data seen at rest as well as during periods of transit situated between various facilities.

Encryption such as this client-side one is used to make the bond of confidentiality stronger in terms of data while assisting to address matters like a wide range of data sovereignty and needs linked to compliance.

Read next: Survey shows 89 percent of industries became victims of identity-based attacks in 2022
Previous Post Next Post