MeSign APP have 6 unique innovative features
- Install an encrypting certificate and a signing certificate automatically
- Encrypt every outgoing email by default, no need to exchange the public key manually
- Sign every outgoing email by default, let every email has identity to prevent fraud
- Add timestamp signature to every outgoing email to attest the time of email sent
- Support for "Say" email on the mobile APP that is more convenient than "Write" email
- Cloud scan email content hyperlinks and attachments security and cloud recognize SPAM
Install an encrypting certificate and a signing certificate automatically
At present, all email client software does not support automated installation of the encrypting certificate and signing certificate. Users need to apply certificate from certificate authority (CA), then setup it in the email client, which is too hard to be done correctly, and even some famous email clients do not support S/MIME certificate encryption and signature.
MeSign APP, let you forget how to apply email certificate and how to configure it. Once the email account is set up successfully, MeSign will automatically apply for an encrypting certificate and a signing certificate from MeSign CA system and automatically set up the certificate correctly. You do not need to care about the existence of the email certificate or how to use the certificates. MeSign APP automatically retrieves the encrypting certificate from the cloud server, to ensure that you can decrypt your email at any time on any device after you log into your email account successfully.
If you have email certificate issued by other CA, you can import it to decrypt previous encrypted emails, and you can set this imported certificate as default encrypting certificate and/or default signing certificate.
If your organization has the highly secure and controllable requirement for the encrypting certificate private key, MeSign support in-house Enterprise Key Management System that deployed in organization intranet, all staff’s computers and mobile devices must connect to in-house EKMS to get the encrypting certificate private key.
Encrypt every outgoing email by default, no need to exchange the public key manually
At present, all email client software does not support automated email encryption since this process requires both sender and receiver to have an email certificate installed and exchange their public keys in advance.
MeSign APP, every outgoing email is automatically encrypted as default since MeSign have solved the certificate application, configuration and public key exchange problem, no need to exchange the public key manually in advance. MeSign follows the S/MIME standard, has the best interoperability with all S/MIME email client software.
MeSign APP, innovatively introduce multiple certificate encryption mechanism, which ensure that MeSign user can decrypt the encrypted email using any his/her own certificate in hand. That is to say, even if the receiver does not use MeSign APP (not having an MeSign Encrypting certificate), but he/she has an email certificate, you can send him/her encrypted certificate as well. If the receiver does not have any email certificate or does not use MeSign APP, MeSign APP will send a cleartext email to the receiver to tell him/her to download and install MeSign APP to decrypt your encrypted email.
Only MeSign APP can automate the email encryption, ensure that your confidential information won't be illegally intercepted and protect your confidential information.
Sign every outgoing email by default, lets every email has identity to prevent fraud
Due to the design "flaw" of email system - the sender's name and email address can be arbitrarily written and easy to be forged, resulting in many fake identities email flooding, all kinds of fraud and phishing emails are disguised as real identity emails, these emails have made the users are impossible to defend effectively, and many users have been hurt in various ways. The "email-gate" incidents are frequently happening, resulting in loss of property and reputation, even endangering social security. Email fraud has become one of the major public security issues of the global Internet, but there has been no good solution.
MeSign APP is an email client software, the difference is MeSign APP automatically configures a signing certificate for MeSign APP user for free, and automatically uses this signing certificate to digitally sign each outgoing email, so that each email carries a digital ID on the transmission, which not only guarantees every email content will not be illegally tampered with, and the email address of the sender cannot be forged, and the true identity information of the sender can be clearly displayed, so that MeSign APP user can identify whether it is a fake identity email at a glance, thereby completely solving the email fraud issues. At the same time, the validated identity information of the sender is clearly displayed in MeSign APP UI (for Email Signature Service Pro Edition), which is very important for the contactless business email communication, which can effectively enhance the trust and promote more business cooperation.
For example, the following two fraud emails sender's email address is using the real bank email address to confuse users since the sender email address can be arbitrarily written and easy to be forged.
As shown in the figure below (Simulation effect), if HSBC Bank signs and/or encrypts the sending emails to the user, the user can easily know that the email was sent by HSBC Bank since MeSign APP says "Identity Validated and Trusted". It is impossible to obtain the signing certificate of named as HSBC Bank for the fake email address, so it is easy to identify the fraud email. The bank only needs to tell the users that if the email without the digital signature of the bank is a fake email, the user will not be deceived. MeSign APP lets users to identify fraudulent emails easily.
Add a trusted timestamp signature to every outgoing email to attest the time of email sent
At present, all email client display email sent time is the mail server time, it can be arbitrarily modified, it is an untrusted time.
MeSign APP, automatically add the timestamp signature from MeSign Timestamp Service System to every outgoing email, the recipient receives the message and MeSign APP will display the trusted time. This feature can be used for all scenarios where it is necessary to prove the time of sending email. This trusted timestamp information can be used for legal evidence, non-tampering and non-repudiation.
MeSign APP adopts the international standard RFC3161 timestamp, and in order to reduce the timestamp data added to the email, MeSign does a technical innovation improvement on the standard timestamp signature data, reducing the size of a timestamp data to 88% of a standard one. At the same time, we apply technical protection measure to prevent re-timestamp, which effectively protects original timestamp from replacing and truly ensures authenticity and non-repudiation to the sending time of an email.
Just as a postal mail must be stamped with a postmark, sending an email should also be stamped by a timestamp server, and only MeSign APP has done it for you in the world for free!
Support for "Say" email on the mobile APP that is more convenient than "Write" email
It is still a painful thing to write an email on a mobile phone. MeSign APP innovatively created "Say" email, which can be either voice or video, and it is also encrypted, signed and timestamped by default.
MeSign APP, let you "say" email that the recipient hears your promise that you speak personally can enhance trust and may even have a more magical effect than your "write" email. MeSign APP encrypt your voice messages and short video before sending, only the recipient can decrypt this important voice message file and short video file. Keep your friends and family's valuable voice message files and short video files permanently encrypted in your mailbox and local computer, which is a worthy collection of digital assets.
Not only that, all voice files and short video files are digitally signed with the sender's certificate, accompanied by a trusted timestamp time to ensure that these voice messages and short video files are indeed recorded and sent by the sender, with non-repudiation and non-tampering attribute.
Cloud scanning for security of the email content and cloud recognizing of SPAM
MeSign APP, uses cloud detection technology to detect the security of hyperlinks and attachments in emails. If a link is directed to a counterfeit and fraudulent website, users are reminded to terminate their visits. If malware is detected in an email attachment, the email will be moved to the "MalMail" directory and the user will be prompted to delete the message. MeSign APP also scan the attachment when user want to send attachment files. MeSign APP only post the HASH of the attachment file to cloud scanning system, NOT upload the original file.
MeSign APP also applies cloud recognition technology to intercepting SPAM, that is, to use the wisdom and strength of all MeSign APP users. Once a user reports an email as SPAM, MeSign APP uploads the email address and IP address to the cloud server. MeSign APP will automatically move the reported email address to the trash or deleted directly according to some algorithm. In order to prevent misjudgment, the user can add the trusted email or domain to the address book or allowlist so that even if other users report it as SPAM, the user still handles the emails from the those addresses normally.
This solution can solve the problem that encrypted SPAM email can't be identified by the mail server and by the email security gateway using the content scanning method, and utilize the power of cloud computing and big data in malware and SPAM recognition.
