MeSign Forum

Register
 
SMF - Just Installed!

Recent Posts

Pages: 1 ... 3 4 [5] 6 7 ... 10
41
User manual / I've updated my password, and how do I update it on MeSince?
« Last post by v-fuhaiyan on October 23, 2019, 07:47:13 AM »
Follow the steps here and hit "Save" at last.

42
FAQ / What is S/MIME encryption? Why does MeSince use it on encryption?
« Last post by v-fuhaiyan on October 23, 2019, 07:46:09 AM »
S/MIME is the abbreviation for Secure/Multipurpose Internet Mail Extensions, which is an international standard protocol based on PKI technology and used to sign and encrypt email body via digital certificate. The advantage is that the email is not only encrypted, but also signed with the sender’s real identity information verified by CA, so that the recipient can confirm the sender's real identity.

The PGP encryption method means the sender himself create the encrypting certificate to encrypt the email; there is no trusted identity information in the certificate, and it is only for encryption. MeSince® thinks that PGP is not suitable for eCommerce communication. It’s as important as email encryption to make sure of the sender’s real identity.

At present, the popular email client software such as Microsoft Outlook, Mozilla Thunderbird and Apple iMail all support S/MIME encryption. MeSince® uses S/MIME standard to sign and encrypt email so that any email client software that supports S/MIME can cooperate with MeSince for decrypting encrypted messages, just need to export the certificate and install it in other email client software.

NIST SP 800-177 “Trustworthy Email” Security Recommendation 5-4: Do not use OpenPGP for message confidentiality. Instead, use S/MIME with a certificate that is signed by a known CA. And Security Recommendation 4-11: Use S/MIME signatures for assuring message authenticity and integrity.
43
FAQ / Why is there a warning on my self-imported certificate?
« Last post by v-fuhaiyan on October 23, 2019, 07:45:32 AM »
This is because that the certificate you import is issued from a CA that is not currently trusted by MeSince, and MeSince cannot identify the validation level of the certificate. Even so, such type of certificates can still work normally on signing and encrypting email, only the icon that differs.

Icon means this certificate is trusted by OS, but not by MeSince; Icon  means this certificate is not trusted by OS and MeSince.
44
FAQ / Encrypting Certificate
« Last post by v-fuhaiyan on October 23, 2019, 07:45:11 AM »
After your email account is set up successfully, MeSince will automatically request the Certificate Issuance System to send a verification email with a verification code to your email inbox. This email is also a welcome email from MeSince with subject - Welcome to use MeSince. Once MeSince APP receives this email, it will submit to verification code to the Certificate Issuance System to finish the email control validation, then the encryption certificate and signature certificate will be issued and installed in your device.

If there isn't email of this subject, it means that the validation for your email isn't completed, so the system cannot automatically configure the certificate. Please check your mailbox if this email is in the Trash folder, or contact the email administrator to add email: no-reply@mesince.com to domain: mesince.com to trust list. If you still do not receive the "Welcome" email, please contact us.
45
FAQ / I'm still worried about the security of certificate, do you support USB?
« Last post by v-fuhaiyan on October 23, 2019, 07:44:42 AM »
For higher security of the confidential information, we are developing USB Key (USB Token), Bluetooth Key and SIM Card Key. Once the hardware key is supported, your certificate will be stored in it and only when the phone is connected to the hardware key, can the emails be decrypted.

If you have USB Key for Windows, you can export the certificate and import it to your USB Key, then you can use your USB Key for MeSince.
46
FAQ / Can the recipient use other email client to receive my encrypted email?
« Last post by v-fuhaiyan on October 23, 2019, 07:44:22 AM »
Yes. If the recipient does not use MeSince, MeSince will send an unencrypted plain text email automatically from your account before sending the encrypted one, telling the recipient to download and install MeSince to open the encrypted message and meanwhile telling the recipient that he can retrieve his own certificate from the MeSince website for decryption using other email client software, such as Outlook, Thunderbird etc.

After the encryption certificate is installed successfully in MeSince Windows version, you can use this certificate in Outlook to decrypt the encrypted email sent by MeSince. For other email client, you need to import the encryption certificate.
47
FAQ / The icons
« Last post by v-fuhaiyan on October 23, 2019, 07:44:03 AM »
Let me tell you the meanings of the icons. ;)
48
FAQ / What special innovation does MeSince have in UI design?
« Last post by v-fuhaiyan on October 23, 2019, 07:36:32 AM »
The advantage of MeSince is that it encrypts every email. Therefore, we highlight this feature in the design of the user interface so that the user clearly knows whether the received email has been encrypted, whether the email has a digital signature, whether the sender’s identity is verified and the respective validation level, whether there is a timestamp for the message. If the email is signed or encrypted, you can check what certificate is used to sign and encrypt. Such important information is clearly displayed on the user interface.

MeSince not only send encrypted email automatically as default, but also makes encryption transparent, allowing users to clearly understand and be confident that emails are encrypted and encrypted with what certificates. Please also refer to the MeSince UI Icon Meaning for detailed instructionshttps://www.mesince.cn/en-us/certui.
49
FAQ / What and why Timestamped?
« Last post by v-fuhaiyan on October 23, 2019, 07:36:06 AM »
A timestamp is to add the time information in a file with digital signature, it works as the evidence of the time when a digital file is created. Since email has been invented and widely used, the sending time is taken from the time of the sender's computer or the mail server, which can be modified, and thus, not trustworthy.
Adding a trusted time stamp to every email is a patent pending technology of MeSince®. The idea comes from the real world stamp on a letter. MeSince does’t equal the computer time to the email sent time. Instead, it uses the time from a trusted timestamp server, attach it to the sender's digital signature and send it together with the email. Once MeSince APP receives such an email, it will first read and verify the timestamp server signature data and take trusted time out as the sent time to display it to the user rather than the computer time like traditional emails do.
This solution ensures that the sent time of the email is verified and trusted, and it can be used for a variety of scenarios where the sent time of the email is required. For example, when there’s a need to prove an email is indeed sent before a deadline, the email content signed with the trusted sent time data can be treated as evidence of litigation cases etc.
MeSince has optimized the performance based on standard timestamp technology, by not only using the ECC signature algorithm, but also simplifying the certificate chain for verification process. These minimize the timestamp data to only around 12% of a standard timestamp signature data, make it more suitable for mobile App and ensure faster response. At the same time, we added technical protection measures to the timestamp signature to prevent the timestamp from overriding, which is a further guarantee of authenticity and non-repudiation.
Just like every postal mail must be stamped with postmark, email should also be stamped with a timestamp. Only MeSince support this special feature for you.
50
FAQ / Why do we need to sign and encrypt all emails?
« Last post by v-fuhaiyan on October 23, 2019, 07:35:52 AM »
Since 1965 when the first email appeared, email has had a history of 53 years. Since its popularization was from 1997 when Microsoft acquired Hotmail, the first free email service provider, there has been 21 years passed.
Email was once the most popular application with largest data flowing on the Internet, but as http, the data transmitted though email is also plain-texted, which is so much like the postcard in real world. We send postcard in real world too, but we never write confidential information on the card.  However, it's quite incredible that we writes almost all information on an plain-texted email, such as information related to work, family and ourselves.
International Standard Organization has published S/MIME protocol for email encryption in 1995, in support of signing and encrypting email using PKI digital certificates. Popular email clients support signing and encrypting emails under this protocol.
To protect commercial and personal confidential information from intercepting(e.g.Find back the forgetten password), the email must be encrypted so that the security of the email content can be guaranteed. If the email is signed, the recipient can be sure that the email is not tampered, which enhance trust online and facilitate further commercial cooperation.MeSince helps implement automated email signing and encryption.
So far, the Internet security industry promotes HTTPs Only. That's because http is plain-text, which is not secure too. We believe, by the effort from MeSince, which automates and simplifies the S/MIME, an age of "S/MIME all email encryption" will come, with all the message being encrypted in whole channels, and security of users' information being protected completely.
Pages: 1 ... 3 4 [5] 6 7 ... 10