News

Microsoft Bringing E-Mail Encryption to Office 365 in 2014

Office 365 Message Encryption will roll out to Office 365 subscribers in the first quarter of 2014, Microsoft announced on Thursday.

The service, which is designed to encrypt e-mails being sent to outside sources, will be available for free for Office 365 E3 and E4 users, and will be included in the Windows Azure Rights Management service.

Office 365 Message Encryption can be seen as Microsoft's reaction to the raft of privacy concerns raised by this year's revelations of NSA spying. The service will provide "sensitive business communications with an additional level of protection against unauthorized access," and is ideal for protecting financial and private data, according to Microsoft.

While Microsoft is treating Office 365 Message Encryption as a new service, it does build on the company's previous message-encryption technology.

"Office 365 Message Encryption is the new version of Exchange Hosted Encryption (EHE)," said Microsoft in a blog post announcing the service. "This version includes all of the capabilities of EHE plus new features, such as the ability to apply your company's branding to encrypted messages. Like EHE, Office 365 Message Encryption works with Office 365 mailboxes as well as with on-premises mailboxes that use Exchange Online Protection."

Once administrators activate the new service and set transport rules either through a Web-based portal or PowerShell, any message meeting those rules will be automatically encrypted before leaving its point of origin. The recipient then receives the encrypted message as an e-mailed attachment and must sign in with the proper Office 365 ID or Microsoft account credentials before the message can be read.

Also, if the recipient responds to the protected e-mail, the reply is automatically encrypted.

Microsoft said its Office 365 Message Encryption service will use multiple encryption and security features, including:

  • Transport Layer Security (TLS), which protects the message in the mail server

  • Secure Socket Layer (SSL), which encrypts the message as it travels from the mail server to Office 365 servers

  • Bitlocker, used to encrypt the data on the datacenter hard drives

  • Information Rights Management, which blocks an encrypted message from being forwarded, copied or printed without authorization

  • Secure/Multipurpose Internet Mail Extensions (S/MIME), which will allow users to include client-side encryption keys

Microsoft is not the only online services company looking to step up its encryption capabilities in the wake of the NSA surveillance accusations. Yahoo last week also announced that all user data traveling through its datacenters will be encrypted sometime in 2014, and its e-mail service will start employing the Secure Sockets Layer (SSL) encryption standard with a 2048-bit key on Jan. 8, 2014.

About the Author

Chris Paoli (@ChrisPaoli5) is the associate editor for Converge360.

Featured

  • Microsoft Appoints Althoff as New CEO for Commercial Business

    Microsoft CEO and chairman Satya Nadella on Wednesday announced the promotion of Judson Althoff to CEO of the company's commercial business, presenting the move as a response to the dramatic industrywide shifts caused by AI.

  • Broadcom Revamps VMware Partner Program Again

    Broadcom recently announced a significant update regarding its VMware Cloud Service Provider (VCSP) program, coinciding with the release of VMware Cloud Foundation (VCF) 9.0, a key component in Broadcom’s private cloud strategy.

  • Closeup of the new Copilot keyboard key

    Microsoft Updates Copilot To Add Context-Sensitive Agents to Teams, SharePoint

    Microsoft has rolled out a new public preview for collaborative "always on" agents in Microsoft 365 Copilot, bringing enhanced, context-aware tools into Teams channels, meetings, SharePoint sites, Planner workstreams and Viva Engage communities.

  • Windows 365 Cloud Apps Now Available for Public Preview

    Microsoft announced this week that Windows 365 Cloud Apps are now available for public preview. This aims to allow IT administrators to stream individual Windows applications from the cloud, removing the need to assign Cloud PCs to every user.