ZixMail - FAQ - Digital Signature Protection

ZixMail Help

ZixMail for
Outlook™ Help

Signature
Manager Help

Support

Quick Facts

FAQs

Glossary

FAQs 1. Isn't my email already safe? 2. Would you explain ZixMail in simple terms? 3. What is the ZixIt™ Worldwide Signature Server? 4. What is a ZixMail Certified Time-stamp? 5. Can ZixMail have file attachments? 6. Do I need to be connected to the Internet to use ZixMail? 7. What is the ZixMail HTTP/SMTP relay? 8. Can I use my ZixIt Signature on more than one computer? 9. I use AOL™ and MSN Hotmail™ - can I use ZixMail? 10. I use Microsoft Outlook™ - can I use ZixMail with Outlook? 11. How strong is the ZixIt encryption technology? 12. Can ZixMail send secure messages to recipients who do not have ZixMail?


Question 1 - Isn't my email already safe? No. Sending regular email over the Internet today and trusting that no one has access to your private information is like mailing a postcard and hoping that no one reads it during the delivery process. Whether you are transferring sensitive files or simply sending a personal note, you are vulnerable every time you send regular email. Even email that does not use the Internet is often stored on servers where computer department employees or management personnel have access. When you press "send", your email message normally travels to an Internet server, and often to several more, before reaching the final destination. At many points in this journey, the message can be intercepted, read, copied, or tampered with. This can make your private correspondence very public.


Question 2 - Would you explain ZixMail in simple terms? Yes. ZixMail enables you to communicate via encrypted and digitally signed messages with anyone in the world who has an email address. You do not change your existing email system or your existing email address to use ZixMail. You must create a ZixIt Signature to use ZixMail. This takes about 60 seconds and is done with the ZixIt Signature Manager™, which is included in ZixMail. The Signature creation process includes the posting of your Public Key to the ZixIt Worldwide Signature Server™. This Public Key is available to anyone who wants to send a ZixMail message to you. ZixMail uses your Public Key to encrypt messages sent to you. The reason that you can read the ZixMail messages sent to you is that you have the Private Key (the mathematical complement of your Public Key) on your computer. Further, when the Private Key is stored on your computer, it is encrypted using your ZixIt Signature Phrase™. This means that if someone were to take a copy of your Private Key from your computer, they could not use it without knowing your Signature Phrase. You choose your own Signature Phrase when creating your ZixIt Signature. A Signature Phrase can be something long like "My family came from Ireland in 1917" or something short like "I love LA" or "I%Love@LA". When sending a ZixMail message, you enter your Signature Phrase. This enables ZixMail to access your Private Key for the purpose of digitally signing the message. When receiving a ZixMail message (which is encrypted when sent to you by others), you enter your Signature Phrase so that ZixMail can decrypt the message with your Private Key. For recipients not using ZixMail, Click Here. For a more detailed explanation in PDF format, Click Here.


Question: 3 - What is the ZixIt™ Worldwide Signature Server? The ZixIt Worldwide Signature Server is a secure computing facility with the capacity to store and to distribute Public Keys for every email address in the world. The Public Keys are distributed each time a ZixMail message is sent. And because Public Keys can be revoked, suspended, or changed, this "each time" feature ensures that the latest valid Public Key is used.


Question: 4 - What is a ZixMail Certified Time-stamp? When ZixMail retrieves a recipient's Public Key from the ZixIt Worldwide Signature Server, this retrieval also returns a Certified Time-stamp that is set from atomic clocks. It is called Certified because we combine the Time-stamp with a "hash" (short mathematical representation) of the ZixMail message being sent and then have the ZixIt Signature Server digitally sign the combination. This means that it is impossible to tamper with or change the Time-stamp. ZixMail includes a Certified Time-stamp in each encrypted message sent. The "hash" of your email message is sent to the ZixIt Worldwide Signature Server , not the email message itself.


Question 5 - Can ZixMail have file attachments? Yes. And not only are the attached files encrypted, they are compressed as well (approximately 4 to 1). This means much shorter transmission times for large files. You can also create attachment lists to automate repetitive file transfers.


Question 6 - Do I need to be connected to the Internet to use ZixMail? Yes and no. When you are not connected to the Internet, you are unable to retrieve the necessary Public Keys and Certified Time-stamp needed to complete and send a ZixMail message. However, ZixMail provides a handy draft area which can safely store your ZixMail messages until you are connected to the Internet. Any previously received ZixMail messages can be read at any time.


Question 7 - What is the ZixMail HTTP/SMTP relay? ZixMail operates dual HTTP/SMTP mail relays (East Coast and West Coast) to serve those ZixMail users who choose not to use their existing SMTP mail servers. ZixMail allows the user to select the "From:" field. This, in combination with the HTTP/SMTP mail relay, enables ZixMail messages to be sent from a local computer using any "From:" address - even an HTTP-based mail address, such as a Yahoo™ or HotMail™ address.


Question 8 - Can I use my ZixIt Signature on more than one computer? Yes. ZixIt Signatures may be moved to multiple computers using a secure export/import feature in the ZixIt Signature Manager™. This means you can use your ZixIt Signature on your home, office, and portable computers.


Question 9 - I use AOL™ and MSN Hotmail™ - can I use ZixMail? Yes. A ZixIt Signature can be created for an AOL™ or a Hotmail™ email address. ZixMail messages, including file attachments, can be sent directly from the ZixMail program using your AOL™ or Hotmail™ address in the "From:" field. To read a ZixMail message received at your AOL™ or Hotmail™ address, simply open the ZixMail attachment. In fact, you can use ZixMail with virtually any of the Internet-based mail systems, including Yahoo™ and Netscape WebMail™.


Question 10 – I use Microsoft Outlook™ - can I use ZixMail with Outlook? Yes. You can use ZixMail with Microsoft Outlook™, IBM Lotus Notes™, Netscape Communicator™, Qualcomm Eudora™, or any other MIME-compliant email product.


Question 11 - How strong is the ZixIt encryption technology? ZixIt encryption technology uses 1024-bit Public Keys. ZixMail message encryption uses Triple-DES with three independent keys. The U.S. Department of Commerce has issued worldwide encryption export approval for ZixIt-enabled software, such as ZixMail. Countries and territories excluded from the approval are: Cuba, Iran, Iraq, Libya, North Korea, Serbia, Sudan, Syria, and the Taliban-controlled territories of Afghanistan. This means that your London, Tokyo, and New York offices can all use the same strong encryption offered by ZixMail.


12. Can ZixMail send secure messages to recipients who do not have ZixMail? Yes. ZixMail sends secure messages for non-ZixMail recipients through SecureDelivery.com. The SecureDelivery.com portal allows recipients to receive their secure messages over an SSL (encrypted) connection using a Web browser.