Encryption

All messages and attachment are encrypted using 256 bit Rijndael encryption before being sent. Attachments are broken into small pieces, each of which is encrypted and stored individually. As an extra layer of security, all data is stored inside a Common Criteria Level 3 Certified database on the Send-It Confidential server.

When a recipient receives a message, the message is stored encrypted on the hard drive. When a message is viewed, it is decrypted in memory and displayed in Send-It Confidential’s special, memory backed viewer. This means there are no decrypted temp files on the drive at any time, and the recipient cannot subvert the security by opening a decrypted temp file.

When a recipient downloads an attachment, the handling of the attachment depends on the security level chosen by the sender. Locked Down, Read Only and Read/Annotate files are stored encrypted on the hard drive. When the file is viewed, it is decrypted in memory and displayed in Send-It Confidential’s special, memory backed viewer, so again there are no decrypted temp files. Read/Write files are sent with friendly security and are stored encrypted on the hard drive but decrypted on the drive when they are opened. The recipient can choose to encrypt the file after they have finished using it to protect it from theft. Full Control files are encrypted during transport but stored decrypted on the recipient’s hard drive.