Table of contents
Start for free
Jason Ginsberg / 1.29.2023Home / Email Security
How to send a secure email in Gmail—learn to protect your online communication!
Learn how to send a secure email in Gmail—we’ll tell you everything you need to know about encryption and other ways to protect your online correspondence!
Over 1.5 billion people use Gmail for email services, and all of them have one thing in common—the desire for convenience. Still, since we use email to share personal, business, and even financial information, keeping that data safe from interference or prying eyes is equally important.Password protection and email encryption are excellent ways to ensure your online communication is secure, and Gmail enables both. The question is whether that is enough to maintain the privacy of your digital correspondence.In this article, we’ll give you all the info you need to send secure emails in Gmail. You’ll learn:
Source: Google
Source: SkiffSkiff offers a generous free plan suitable for the average user’s needs, such as 10 GB of storage space, an email search option, four aliases, and custom signatures. The platform is also open source and completely transparent about its privacy practices—check out the public whitepaper for detailed information on Skiff’s end-to-end encryption model.Skiff also enables you to use your crypto wallet as login credentials—you can complete transactions and collaborate with fellow web-3 enthusiasts in a completely anonymous environment.
- How to password-protect email in Gmail
- How to send secure email attachments in Gmail
- How to encrypt email in Gmail
- How to open an encrypted email in Gmail
Secure your emails with SkiffSkiff Email ensures total email security by using the only reliable encryption protocol
Sign up
How to password-protect email in Gmail
Digital password protection is practically as old as computers—and you can use it to protect your emails in Gmail with a feature called “Confidential Mode.” In this mode, recipients can’t download, print, copy, or forward your email.Here’s a quick step-by-step guide to using it:- Open your Gmail account and use the Compose button to start working on a new email
- Click on the tiny lock icon at the bottom of the window to begin writing an email in confidential mode
- Choose an expiration date on the screen that pops up. You can pick between:
- Five years
- Three months
- One month
- One week
- One day
- Choose SMS Passcode. Enter the recipient’s phone number, and they’ll get an SMS with the passcode they'll have to enter to read the email. If you go with the No Passcode option, recipients will be able to open the email but not copy or download it
How to send secure email attachments in Gmail
Sometimes, the text in the body of your email isn’t the only thing that’s confidential. Most of us attach various files to our emails, and we want them to stay as private and confidential as the email itself.If you want to secure your email attachments with a passcode, the procedure is identical to password-protecting your email—turn on Confidential Mode for the email containing the attachment, and no one will be able to download the file without the accompanying passcode.Downsides of password protection in Gmail
In practice, Confidential Mode works as intended. Still, it’s not the ideal form of securing emails for two reasons:- You’re dependent on another person’s phone—You must be sure that the recipient’s smartphone is secure, not to mention they can lose or misplace it, compromising the safety of your email communication
- The process is complicated—While password protection with Gmail makes email correspondence more secure, it is also frustrating because of the manual work involved. You must inform the recipient to expect an SMS with the passcode to minimize confusion, and they need to check and enter it to access the email, which can be lengthy and complicated. There’s also the question of what happens when you want to send a password-protected email to someone whose phone number you don’t know
Secure your sensitive dataAs an end-to-end encrypted service, Skiff seamlessly protects you from unauthorized access
Sign up
What is email encryption?
Almost every email service provider (ESP) uses some form of encryption to secure the contents of your emails. These encryption methods are complex algorithms that make email data “jumbled” and illegible to anyone but the person with the decryption key—ideally, only the recipient.Most ESPs provide email encryption by default, but not all use the same encryption protocols. Broadly speaking, there are three types:| Type of encryption protocol | Definition |
| At-rest encryption | Protects data while it rests, i.e., is not moved between email servers or devices |
| In-transit encryption | Protects data while it travels from the sender to the recipient when it’s most vulnerable to tampering by third parties like hackers. This encryption method is used by most mainstream email service providers |
| End-to-end encryption | Encrypts data on the device level before it’s uploaded to an email server, ensuring it stays in encrypted form until it reaches the recipient. Only they have the key to decipher the message. This is the safest type of encryption available, provided only by a handful of ESPs, such as Skiff |
How to encrypt an email in Gmail
Gmail uses two specific encryption protocols:- Transport Layer Security (TLS)—Gmail’s default encryption protocol that protects your emails in transit between email servers, as long as your recipient’s ESP also supports it
- Secure/Multipurpose Internet Mail Extensions(S/MIME)—a stronger type of encryption that provides protection to emails while they’re resting on an email server
| Type of Google account | Available encryption protocol |
| Personal Google Account (free) | Transport Layer Security (TLS) |
| G-Suite Account (paid) | Secure/Multipurpose Internet Mail Extensions (S/MIME) |
How to open an encrypted email in Gmail
Google’s encryption method is automatic for the sender and the recipient. If someone has sent you an encrypted email created in Confidential Mode, you’ll need to check your phone for an SMS with the passcode.Once you enter the passcode, remember that you can’t read the message and access the attachments after the expiration date. The sender could also decide to remove access early, and you won’t be able to forward, download, copy, or print the email.How to check my encryption in Gmail
You can check the encryption used in your emails only with a G-Suite Account. A free Google account doesn’t provide such an option.Here’s the step-by-step guide on the process:- Click on Compose to start writing an email
- Click on the To field and add your recipients
- Check the small lock icon that will appear on the right. The color of this icon will determine which encryption you’re using:
- Green means you have higher S/MIME protection
- Gray means you have standard TLS protection
- Red means your emails aren’t encrypted
Benefits of end-to-end email encryption
The encryption protocols implemented by Gmail, Outlook, and similar ESPs don’t provide complete safety and privacy in email communication. The encryption keys are configured and owned by Gmail, not you, so someone else could theoretically access them.Historically, ESPs have used data obtained from email services for ad targeting, and security breaches of their servers have resulted in data leaks. While at-rest and in-transit encryption methods protect email data at different points of its journey from the sender to the recipient, they are susceptible to network- and server-based email attacks.That’s why end-to-end (E2EE) encryption is the ultimate form of email security. Since E2E email encryption happens at the device level, it provides complete protection of your data all the way to the recipient. The key is owned by the user, not the email provider, so nobody but the intended recipient has access to it. Even if a server is breached, the provider doesn’t store a copy of the decryption key, keeping your data ineligible to hackers.Among a few ESPs offering this level of protection, Skiff is the one providing ease of use, beautiful design, and a comprehensive product suite in one package. With Skiff Mail, every email and attachment you send remains private and confidential, thanks to its E2EE-powered security. Skiff’s encryption model entails two mathematically related keys—one for encryption and the other for decryption. The latter is safely stored on the recipient’s device, so intercepting and stealing it is impossible.The server host can’t access your attachments or read your emails—and neither can anyone else, including Skiff. Third-party services can’t analyze the contents of your private emails to target you with personalized ads, so you have complete control and ownership of your data.How Skiff upgrades the security of your online communication
Numerous ESPs provide decent email security but fail to become a worthy alternative to Gmail because of their UI. Besides the safety of end-to-end encryption, your chosen ESP service should also feature a modern, well-designed interface that gives you all the ease of use you’d expect from a mainstream tech giant like Google.Skiff Mail provides precisely that—a modern interface designed for highly intuitive use combined with supreme data ownership and security. Besides the encrypted email client, Skiff offers a full suite of web-based productivity tools. Registering for a free Skiff account gives you access to:- Skiff Mail—a secure email client
- Skiff Drive—a cloud storage solution for secure documents
- Skiff Pages—an end-to-end encrypted online workspace
- Skiff Calendar—an E2EE private calendar app for scheduling events
These browser-based tools come with a corresponding iOS and Android app, so you can access secure data on the go.You can forget about tampering with email settings, checking encryptions, or creating passcodes—sending an encrypted email with Skiff Mail is as easy as it gets:
- Go to the Signup page
- Create a Skiff account
- Start using the product suite
Register for a Skiff account today, and use email correspondence as you were always supposed to—with total privacy and security.
Related articles
Jason GinsbergHow to create a custom email domain in a few easy steps—a concise guideLearn how to set up a custom email domain and give your business a credibility boost. Explore ways to create a privacy-oriented personalized comms solution.
Andrew MilichTypes of email attacks—protection, detection, and prompt responseGet to know various types of email attacks and learn how to respond to them. We will present the latest security measures to keep your inbox safe and private.
Andrew MilichSecure email services—maximize inbox safety with the right providerEven the most secure email service providers often merely give you an illusion of safety. Find out what makes your inbox safe and how to keep your data private.
Eli MacKinnonFiguring out email encryption services—the good, the bad, and the uglyThe best email encryption services should deliver in terms of features, UI, efficacy, and cost. Our experts help you understand what the desired model is.
Jason GinsbergDecrypting the truth—how secure are emails, and what safety measures are essential?How secure are emails? It depends on your perception of privacy—learn all the basics and find out how a proper encryption method can up your online safety.
Jason GinsbergMake an informed choice—what is the best private email service?Learn about the essential encryption protocols and security features in private email accounts. Protect your data and communicate freely online!
