Google announced on Friday that users of an enrolled Google Workspace will now be able to send and receive encrypted emails both within and outside of their domain thanks to end-to-end encryption (E2EE) to Gmail on the web.
When enabled, Gmail client-side encryption will ensure that no data sent as an attachment or as part of an email can be decrypted by Google servers.
Client-side encryption, which Google refers to as E2EE (beta), was already accessible to users of Google Drive, Google Docs, Google Sheets, Google Slides, Google Meet, and Google Calendar.
On Google’s support website, the company stated, “With Google Workspace Client-side encryption (CSE), content encryption is handled in the client’s browser before any data is transmitted or stored in Drive’s cloud-based storage.”
“In this manner, Google servers cannot decrypt your data or gain access to your encryption keys. You can select which users can create client-side encrypted content and share it internally or externally after setting up CSE.
By submitting their Gmail CSE Beta Test Application, along with the email address, Project ID, and test group domain, users can apply for the beta until January 20, 2023.
Customers of Google Workspace Enterprise Plus, Education Plus, and Education Standard currently have access to the Gmail E2EE beta.
Users who have personal Google Accounts, as well as Google Workspace Essentials, Business Starter, Business Standard, Business Plus, Enterprise Essentials, Education Fundamentals, Frontline, and Nonprofits, do not yet have access to the feature. Customers of G Suite Basic and Business in the past are also affected by this.
After Google messages back that the record is prepared, administrators can set up Gmail CSE for their clients by going through the accompanying technique to set up their current circumstance, get ready S/Emulate endorsements for every client in the experimental group, and arrange the vital assistance and character supplier.
Admin console > Security > Access and data control > Client-side encryption can be enabled at the domain, organizational unit, and Group levels. The feature will be disabled by default.
By clicking the lock icon next to the Recipients field and selecting “Turn on” under the “Additional encryption” option, once enabled, you can turn on E2EE for any message.
End-to-end encryption will be made available to Gmail users by Google. After that, you can use your Gmail to write messages and add attachments as you would normally.
Google added, “All data at rest and in transit between our facilities already use the most recent cryptographic standards.”
“Client-side encryption assists in addressing a wide range of data sovereignty and compliance requirements while strengthening the confidentiality of your data.”