FAQ: version 3.2

I want to store my secured email on another location for backup purposes, what should I do?

1. Open Settings – select Archiving
2. Here you can change the location of the archive folder. By default emails are stored in the My Documents – Secured eMail folder

Can I secure folders on the network?

Yes, you can secure files and folders on the network.
Note: When securing large folders it will allocate a lot of memory that may slow down your computer for a brief period.

I have received an encrypted message from someone using Secured eMail. How do I open it?

To open the email you must download the free Secured eMail Reader.

What happens in the system when I open a secured email from one of my secured contacts?

When opening a secured email, the system searches the archive folder for a copy of the secured email. If no copy is found and only the original exists, the system will prompt for the Shared Secret (the password used when you established this secured channel). If the secured channel exists, the system will automatically find the right key and open the email.

How do I open a secured email from my web mail?

To read a secured email, you must have Secured eMail, Secured eMail Reader, or the Reader Lite. The free Reader can be downloaded here.

1. When you receive a secured email, either save or open the attachment.
2. This can be done by selecting the attachment and clicking the right mouse button.
3. Select either open or save. If you select open, you will be asked to enter the shared secret. Once entered, the mail will open normally.
4. You can also save the attachment. We recommend saving it onto the desktop, since it is easier to find the message this way.
5. Double click the saved attachment on your desktop.
6. A window will appear asking you to enter the shared secret that you share with the contact. Once entered, the mail will open normally.
7. Now that a secure channel has been created between you and the sender, you will never be asked to enter the shared secret for this contact again.

What does the email recipient receive?

The email recipient will receive a mail with the subject: "This is a secured email from [sender’s name]".
The receiver will need to download the free Secured eMail Reader. If the recipient has any of the fully supported email clients, the Reader will automatically integrate into it, allowing for the receiver to read the secured email like normal. If the recipient does not have a supported email client, they can still open the attached .sema file, and the email will be displayed in Internet Explorer.

I have already established a secure channel with my contact, but I am being prompted for the shared secret.

This can be due to your contact deleting you from their secured contacts list. If you are encountering issues with a secured channel, we recommend that both parties delete each other from the secured contacts list and establish a new secure channel.

What is the shared secret?

The shared secret is a password that allows you and your contact to create a safe communication channel. These channels are created by adding a new contact to your secured contacts list. The recipient has to enter the shared secret only once, when they receive the first secured email from you.

What is the difference between the shared secret and my Private Password?

The shared secret is what you communicate with your recipient to create a safe channel. Your Private Password is used to access any mails that have been archived encrypted and to lock certain functions within the software.

Can I secure any USB stick or only sticks provided by Cryptzone?

You can secure almost any USB stick on the market however some sticks contain pre-installed software which may cause a conflict. If you encounter a problem please contact Cryptzone support.

Do I need to secure the entire USB stick?

No, you can choose to secure only part of the stick. Go to settings - select Secured eUSB and click "Allow unsecured data to be stored on the USB device". You will need to do this before securing the device.

Is it possible to secure USB devices of every size?

Yes, but if you want to secure USB flash devices that are larger than 4GB you have to format the device with the NTFS file system as FAT32 is limited to 4GB. This is limitation in the FAT filesystem, not in Secured eUSB.

Automatically Secure Any Existing Content

This setting is only valid if you choose to not encrypt the entire USB flash drive. You will then be asked if you want to secure the existing content or not.

If you choose to encrypt the entire USB flash drive, all files currently on the drive will automatically be encrypted.

I tried several times to register but I get the error message "registration failed..."

1. Check that your internet connection works
2. Check that your firewall is not blocking the connection. If so, allow connections from the Cryptzone SEP Client to the internet.
3. If it still does not work please contact Cryptzone support for further assistance

My client registration works but I cannot connect with the Enterprise server?

1. Open the Client Settings – Select Enterprise Connection and check whether the light is green
2. If not – click <Connect> If the light goes green then you have restored the connection
3. If the light is still red, click <Edit> in the Default Connection section on the same tab and check whether the connection information such as Server Name and IP is correct
4. If you still have problems contact your Administration Support.
5. Administrator: Check whether other clients have same problem and restart the Enterprise Server. This should restore the connection

How often does the validation of the client happen?

The client will be validated to the SEM license centre within 24 hours. If there is no connection after 20 days the license will turn into a limited version. The next time you go online to validate, the client will automatically turn back to the full version.

In the Enterprise Offline version all clients validate only to an internal Enterprise server. This does not need outgoing communication to the SEM license centre.

The installation software did not accept my license key, what should I do?

The most common reason for not accepting the key is that you have used a different email address from when you purchased the software to when you filled in the registration form. Use the same email address and matching product registration code, if this does not work contact support. Please email your license key and user details to support@cryptzone.com

Can I move my Cryptzone client to another (new) computer?

It is possible to re-use the license key and the license information on a new computer where Cryptzone SEP Client has been installed. It is also possible to move the archived sema file copies to a new computer. The secured contacts, you will have to re-establish, on the new computer. This means you can not move the entire system with all secured contacts included (Secured eMail), from one computer to another, but it is possible to start using Cryptzone SEP Client on a new computer using the old license information. It is also possible to open all old secured emails without shared secret, when the sema-file copies have been moved to the new computer.

I have installed Secured eMail but I can’t find the "Send secured" button or the Cryptzone SEP Client options. When I double click on a secured email it doesn’t open.

When installing the software please ensure that your email client is closed. Sometimes it does not close entirely if you have devices like a mobile phone or a PDA connected to it. To solve this, restart you computer, close or remove applications that have contact with your email client and reinstall the SEP Client. If this does not solve the issue, please contact support@cryptzone.com

I don’t know which version of the software I have, how do I find out?

Open up the Monitor, click Settings. In the dialog box that appears, right-click the top left corner and a menu will drop down with "About Secured eMail v??). This is the version of your software.

Or:
Open the Secured eMail Reader (Start > Programs > Secured eMail > Secured eMail Reader), and click Settings. In the dialog box that appears, right-click the top left corner and a menu will drop down with "About Secured eMail v??). This is the version of your software.

Can I remove the splash-screen?

Yes, you can.

1. Go into Settings (Start > Programs > Secured eMail > Settings)
2. Right-click the top left corner (The green icon)
3. Click on "Display Splash-screen" to untick it.

I would like to configure my password security but I cannot find it in the Settings?

1. Go to Settings and select "Security"
2. If the Admin Lock is (Enabled) you have limited access and cannot make any changes. Only the Administrator can disable this lock to configure the password security.

I would like to change text and logo on my wrapmail, is it possible?

Yes, go to Settings, select "My Custom Texts" and click "Edit Wrapmail". Now you can add your own text, insert graphics and edit the Subject text.

How can I disable the Monitor?

You can simply sign out when you want to disable the monitor. It is also possible to disable it by opening Windows Task Manager, go to Processes, select Secured_eMail_Application_Monitor and click End Process.

Why do I need the Monitor?

The Monitor Icon shows that your software is active. When signed out and if you have a password requirement to access the system, it prevents others from reading your secured email.

The Monitor is always disabled when you turn on your computer so that will take less time for the computer to start. When you use your Secured eMail product, it will trigger the Monitor and activate the Secured eMail software.

From the Monitor you can easily access Settings, Help and more. You can always sign out when you don’t need to use it.

What happens if my computer crashes and I need to reinstall?

You can only recover if you have the encrypted files stored on a server or other backup location. All you need to do is reinstall the software with the same Master Password, Private Password or Custom Password and configuration as before.

If you had the Recovery Password function configured in Enterprise Server, you can use this to access your files. When you open a secured file you will receive a ticket which you send to your administrator and they will in turn send you a recovery password.

Important note Secured eMails: Secured emails (.sema files) cannot be accessed if you don’t remember the shared secret. Due to security, originals can only be opened with the same shared secret that was used to encrypt it. You will also need to re-establish new shared secret with your recipients.

What happens if my computer needs to be formatted?

You need to make backup of your files before formatting, contact Secured eMail support for help on how to do this.

I bought a new computer and want to install Secured eMail software, how do I transfer my data across?

You should do a backup of the system before you transfer your data across. Contact Secured eMail support for help on how to do this.

What happens if the Enterprise Server goes down?

All you need to do is restart the Server. Click on the Server Icon and click restart.

The Client and Admin Tool are unable to connect to the Enterprise Server, what should I do?

Restart the Server and use the Admin Tool to see the status of the server.

What should I do when only the Client cannot connect to the Enterprise Server?

1. Open the Client Settings – Select Enterprise Connection and check whether the light is green
2. If not – click <Connect> If the light goes green then you have restored the connection
3. If the light is still red, click <Edit> in the Default Connection section on the same tab and check whether the connection information such as Server Name and IP is correct
4. Check whether other clients have same problem and restart the Enterprise Server. This should restore the connection

The SQL database does not connect with the Enterprise Server, what should I do?

Check the database settings and restart the server.

The file server crashed, what should I do?

Restart the Enterprise Server and restart the Mail Server.

I lost connection to Outlook, what should I do?

Restart the Enterprise server and check that all Mail Server services are running. All services that are set on auto should be started.

My laptop has been stolen and I have lost all my information, can I restore any of my encrypted eFiles, eFolders or eUSB?

If you have a backup you can access encrypted eFiles, eFolders or eUSB. All you need to do is reinstall the software with the same Master Password, Private Password or Custom Password and configuration as before.
If you had the Recovery Password function configured in Enterprise Server, you can use this to access your files. When you open a secured file you will receive a ticket which you send to your administrator and they will in turn send you a recovery password.

My computer crashed and some of my encrypted files are damaged and some are lost. How can I restore them?

Secured emails can always be opened by using the original Shared Secret used for creating them. In order for the possibility to add the Shared Secret, the secured contact must be deleted from the contact list. If a .sema copy remains in the archive location, a secured email can be opened without the Shared Secret.

Using the Enterprise solution, clients receive the Shared Secret from the server when opening emails from other domain users.

Archived .sema copies can be opened from their archive location, if these are saved secured, you will need to be aware of the unlocking password.

We are Enterprise users and want to implement Secured eControl, what should we do?

You can purchase a license from our sales team who will direct you to where you can download the Secured eControl system. You can then start using the system together with Secured eMail.

Several client users have lost their Private Password. How can I reset their passwords?

To reset the Private Password you need to access the Admin Lock on the Client software.

1. Use the Master Password to unlock the settings.
2. Click on Password
3. Select Private Password and use the Master Password on "Enter old Password" field
4. Now the user can change their Private Password

I have installed the Enterprise server and Admin Tool, how can I deploy the client software?

1. First create the user list. This can be done manually or imported from Active Directory.
2. Deploy licenses to users.
3. Deploy the required policy to users. If you don’t change policies the default policy will be used.
4. Select Tools from the top menu. Here you can create a client installer or upgrade an installer.
5. Create an installer with the options needed. This installer can be used in conjunction with most deployment tools.

Our deployment tool uses MSI files but I can only generate .exe files, what can I do?

Contact Secured eMail support for MSI files.

When I import from Active Directory some of the user profiles are missing.

There can be many reasons for this as different companies have different configurations, but most common cause is some data could not be synchronized with the Enterprise Server.

The Server reads data using the default configuration. Contact Secured eMail support and describe your problem and we will help you.

Does Secured eMail work with Terminal Server in a Citrix environment?

Yes, Secured eMail can be installed to selected profiles or to all profiles.

Which port and protocol does the Enterprise Server use to access the Internet?

Most common configuration is port number 443 using the HTTPS protocol. Only outgoing traffic is allowed from the Enterprise server.
Note: The Enterprise server listens to a user defined internal port; by default port number 8888 is used.

Which IP address and port number is used when installing Enterprise software?

During installation you can specify your own IP address and port number, by default it uses 127.0.0.1 and port 8888. This can be easily changed after installation in the Admin Tool.

What is required to install the Enterprise software with Lotus Notes?

The installation of Secured eMail for Lotus Notes / Domino consists of two parts:

• The installation of the Secured eMail Client on the user’s computer
• The installation of the Enterprise components onto the Lotus Domino server

I tried to install the Enterprise solution but the registration failed, what did I do wrong?

1. Check that you have prepared everything accordingly to the Installation Guide
2. Check that the IP address and port number are correct
3. Check that your internet connection is working
4. If you are still having problems, contact Secured eMail Support

We want to only use Secured eFile with the Enterprise solution, is that possible?

Yes, it is. The installation procedure is same for all Cryptzone products. When you want to add other products to your license, contact Secured eMail sales. Then when registering the new product, the license server will provide you with your new product and upgrade the license key.

We want to only use Secured eUSB with the Enterprise solution, is that possible?

Yes, it is. The installation procedure is same for all Secured eMail products. When you want to add other products to your license, contact Secured eMail sales. Then when registering the new product, the license server will provide you with your new product and upgrade the license key.

Does Secured eMail work with multi user profiles?

Yes, you can deploy Secured eMail to several profiles on same network. During installation of Secured eMail, make sure that you select to use multi user profile and tick in the box.

What is required to install the Enterprise software with Lotus Notes?

The installation of Secured eMail for Lotus Notes / Domino consists of two parts:

1. The installation of the Secured eMail Client on the user’s computer
2. The installation of the Enterprise components onto the Lotus Domino server

Does Secured eMail work with multiple user profiles?

Yes, you can deploy Secured eMail to several profiles on same network. During installation of Secured eMail, makes sure that you select to install to all users.

What is System SKG?

The SKG (Symmetric Key Generator) is a unique patented solution for Secured eMail. The SKG System uses symmetric encryption in combination with several encryption algorithms; AES, SHA-1, and SHA-2. The system uses very strong encryption key protection, delivered in a user-friendly application for secured encryption and decryption.

How System SKG works

The SKG system generates a onetime dynamic session key that can synchronize at both ends. The system uses the secure HASH algorithm called SHA-1, to create identical 160-bit keys in physically separated locations. Then the SKG key, in combination with SHA-2, scrambles with a static seed to establish a secure channel between sender and receiver. This unique method of creating keys means that no key information is sent. When the key has decrypted the message, file, or folder; it will be removed from memory and dumped again using SHA-2.

Each node is given the same condition (seed) and its own unique Id (SID) which is then sent and shared with the other party. It is then possible to generate exactly the same condition on each side.

System SKG has the ability to create synchronously identical 160-bit keys at nodes with SHA-1. Once system SKG is set up; the nodes generate new keys on demand, never using old keys. In the Secured eMail system; the seed is the shared secret.

What is AES?

AES stands for Advanced Encryption Standard. The block cipher is a symmetric key cipher which operates on fixed length group of bits (blocks). It can process data blocks in bits and 256 bits are unbreakable. AES is adopted by U.S Government as an encryption standard.

Do you use PKI in your encryption

No, we do not use PKI

What is SEP (Simple Encryption Platform)?

Secured eMail offers a patented data security solution based on the Simple Encryption Platform (SEP) that provides high security and flexibility, which is scalable for any business. The products available are:

1. Data at Rest: Secured eFile, Secured eUSB and Secured eDisk Protect
2. Data in transit: Secured eMail
3. Policy Control & Content Filtering: Secured eControl

What does O.C.C. mean?

Historically, IT security has been focusing on addressing external threats by using virus detection, firewall, anti-spam and anti-spyware, however as organizations grow globally so does the need for information security to protect against internal threats. From this the term O.C.C. – Outbound Content Compliance was created. A solution providing the monitoring, encryption, filtering and blocking of outbound content by email, instant messaging, peer-to-peer, web posting and other types of messaging traffic.

What is required by O.C.C?

The O.C.C requires protection against the following:

1. Compliancy to Government regulations such as HIPAA, SOX, GLBA
2. Violation of corporate email and best practice
3. Loss or leakage of intellectual property
4. Loss or leakage of confidential customer information
5. Legal liability associated with inappropriate and offensive content

How do I edit my personal information given to Secured eMail?

To edit your details please send a mail to support@cryptzone.com. Please do not forget to include your license key and new user details.

What type of businesses uses your product and service?

Since Secured eMail is compliant to HIPAA, GLB, SOX and most the of Government recommendations in many western countries, many branches use our software to secure their systems. These include healthcare, financial institutes, Government, Law Firms and any business and industry as well as private users who want to protect their personal integrity.

What is the .sema file?

The .sema file is the IANA registered file for a secured email. All secured email is attached with an encrypted .sema file. You can open secured emails if you have Secured eMail or the Secured eMail Reader installed on your system. The free Secured eMail Reader is available from here.

When does the system create a .sema file copy?

When a secured email is opened or sent, a copy of the original encrypted .sema file will be created. The .sema copy will be placed in the folder "My secured eMail" under My Documents or a user-defined archive location. Each time you open a secured email the system will look for the .sema file copy.

What is a Multi license?

A Multi License means one license key can be used for more than one user. Using a Secured eMail Enterprise product (implies multi license), you may exchange users to re-use license quotas.

What is a Single license?

A single license key is only valid for one desktop user. This key cannot be registered to other users name or email.

What do I do if I lost my license key?

To retrieve a lost license key, click on the "Lost License Key" section on the Support page.

Important Note: If you are using a version older than 2.2, you will need to enter the email address that was used to register the product. Secured eMail will send the most recent license key to the email address entered.

The installation software did not accept my license key, what should I do?

The most common reason for not accepting the key is that you have used a different email address from when you purchased the software to when you filled in the registration form. Use the same email address and matching product registration code, if that does not work contact support. Please email your license key and user details to support@cryptzone.com

I have purchased a product and haven’t received my license key, what do I do?

The most common reason is the license mail has been caught by your spam filter. Some spam filters do not show leniency towards emails containing images, which is why the license mail can end up in your spam box.
If you cannot find it in your spam box, please send an email to support, specifying the date of purchase, ordered product and company name. The more information you supply, the faster we can help you. support@cryptzone.com

Can I use the same license key for Secured eMail on more than one computer?

Yes you can. Although the license key is personal, it can be connected to you as an individual and to your company at the same time. All you have to do is install Secured eMail on the computers where you wish to use it and apply the same key and registration information. Your Secured eMail will now work on all machines simultaneously.

Where in the computer is the license key stored?

In an internal encrypted database.

Can I use the same license key for Secured eMail on more than one computer?

Yes, but only if you have an enterprise key or a client with a multi license. Enterprise Users: When the client registers, it will connect to the Enterprise server to receive a unique user license.

Client Desktop users: All clients will receive a unique license when registration is successful.

I have installed a Lotus Notes Client and I am connected to the Domino Mail server but I cannot find the "Send Secured" button?

The "Send Secured" button is deployed by the Administrator. Contact your administrator and check if they have added it your user profile.

Only desktop users with no connection to Domino Server will have the button locally installed. In such case use POP account.

What about length of passwords or shared secrets?

You can configure the Password length and character requirements in the Settings.
Open Password – scroll down and click on <Configure Password Policy>. Here you can select the criteria for the password requirement.

What is a Prepaid Code?

A prepaid code is similar to a shopping voucher for specific products or add-ons. If purchasing for colleagues, clients or friends and you do not have all their details to register them, it is useful to buy prepaid codes instead. The user can then go into the Secured eMail Shop and activate their license with the prepaid code.

How do I activate a Prepaid Code?

To activate a Prepaid Code, you must go to the Secured eMail web shop at www.cryptzone.com/shop/ and click on "Prepaid Code".

The Secured eMail Reader does not start when I double click on an encrypted email. Instead a window appears saying the file cannot be opened because Windows does not recognize it.

In the window that appears, you will be given two choices. Either your web service will help you find the right program or you can choose a program from the list. Choose the second option and a list with programs will appear. Choose Secured eMail and press OK. The next time you double click on the email, the Secured eMail Reader will start automatically.

Does Secured eMail Reader support webmail like Gmail, Yahoo mail, Hotmail etc?

With the Secured eMail Reader you can read encrypted emails on any email platform including all web based email platforms.

1. Click Start
2. Click Program
3. Select Secured eMail Reader
4. Click Reader and add the shared secret
5. The Reader will open the email

What is a SEM Account?

A SEM Account is a web portal hosted by Secured eMail for Enterprise Customers and Client Multi license-users. A logon will be created when you register the software. The SeM License Server hosts all license registration, upgrade and activation.

Through this portal you can upgrade your license and create a database for your registration.

Note: This database is not for storage of your company profiles or data. All company or personal data will be stored on your own location in a SQL Database.

How do I use my SEM Account?

Enterprise User:
The Enterprise administrator can use the Enterprise Zone to upgrade their license and to create a customer database. Client Desktop with multi license:
The administrator can use the Open Zone for license activation and upgrade. Here they can see registered client users and can activate the products for them.

I have forgotten my SEM Account log in, how can I get help?

Contact Secured eMail Support by email or phone and have your license number, order number or customer number available. Login details will be sent to the registered email owner of the account.

What happens when the License Server is down?

If the license server is down, the Client will still have full functionality for 24 hours.

The Enterprise Server will still work online for at least 12 hours, this does not affect performance of the Servers but you need to wait with license registration. This does not affect the Offline version.

Can secured emails be stopped by Anti-spam software?

No they cannot. The Secured eMail extension, .sema, is an internationally authorized extension. If a secured email is stopped you will get a notification saying "This email has been stopped. Do you wish to authorize this email and all similar emails in the future?" You can then decide how you would like to handle secured emails in the future.

Will my anti-virus system stop a secured email?

No. As Secured eMail is an add-in for your email client, it is integrated seamlessly into the system and therefore it will not be stopped by your anti-virus program.

How would Secured eMail work alongside a virus scanner that rejects all encrypted emails as viruses?

That depends on the virus scanner software. If it would block secured emails, the user will receive an email informing them that the email has been blocked. The anti-virus program will ask the user if they wish to unblock the encrypted email and by accepting this, any future emails will be accepted. Furthermore, the .sema file extension is registered with the worldwide internet authorities as well as with anti-virus and anti-spam companies. This means that the .sema file will be accepted by many different software products.

Are virus scanners on the client able to scan ingoing and outgoing mails that are encrypted with Secured eMail?

Yes, they are. When opening a mail in Outlook by double-clicking it, a temporary copy is created which is treated in the same way as a normal incoming mail and therefore will be scanned. The same applies for outgoing emails.

Why do I need to install a SQL database?

One of the reasons is to keep your data safe and intact. If server goes down, you still have your data safely stored within the database. To bring the system back online, all you need to do is reinstall the Enterprise server and re-connect the database to the server.

Why do I need the support & maintenance service?

Only customers who have purchased a support agreement are entitled for the service. All incoming support questions are accepted and dealt by the Secured eMail support team.

What does support & maintenance provide?

Support provides immediate response to phone calls and reply within 3 hours via email during office hours, 8:30 - 17:30 Swedish time. You can also organize an appointment for support by phone, outside of business hours.
There is installation support over the phone, email and a web based demo service.

Maintenance entitles you for free upgrades and updates during the purchased time.

How do I purchase support & maintenance?

Contact our sales department or the support team.

What browser does your software work with?

The software requires Microsoft® Internet Explorer 6.0 or later.

Which email clients can I use?

Microsoft® Outlook® 2000 or later and Lotus Notes™ 6.0 or later.

Do I need to create a new email address to use Secured eMail?

No, Secured eMail will automatically detect any email accounts in your email client and add them into your "My Accounts" list.

Does Secured eMail support Vista?

No, currently Secured eMail does not support Vista.

Does Secured eMail support Microsoft Outlook 2007?

Full support for Microsoft Outlook 2007 is under development. However, Secured eMail does work on some systems running Outlook 2007, but the "Send secured" button will be in the Add-ins ribbon.

Is it possible to create a "Send Secured" button on the menu bar within Microsoft Outlook 2007?

Yes, it is possible.

1. Open a new Email
2. Click the small arrow pointing downwards (located above the "Send" button)
3. Choose "More commands"
4. Under the Drop-down labeled "Popular Commands", choose "Add-Ins Tab"
5. Highlight "Custom Toolbar" and click "Add"
6. Click OK.

Where and in what form is the Shared Secret stored? How do I access it?

The Shared Secret is not stored. It is only used as an Initiating Seed, which is regarded as a digital stamp. The seed is stored in a database (Database A) belonging to System SKG. Database A is encrypted with a randomly generated 256 bit key, which is stored in a second database belonging to Secured eMail (Database B). This is encrypted with a randomly generated 256 bit key, along with AES, and an additional static key. The static key is encrypted with AES and a 256 bit key generated from the private password. The private password is stored in Database B.

Where and in what form is the private password stored? How do I access it?

The private password is stored in a database belonging to Secured eMail (Database B). Database B is encrypted with a randomly generated 256 bit key, AES and an additional static key. This key is encrypted with AES and a 256 bit key, originating from the private password. To access it, the user must enter a password that is transformed to a 256 bit key. The key is stored encrypted with AES in the memory during the session. On every access/session Database B or parts of it is encrypted with new keys.

When a mail is opened and read, where is it stored?

Everything is stored in two ways:

1. Locally on the hard disk. This file is purged or wiped when the computer is turned off. This means that the information is overwritten over a number of times to securely erase it from the hard disk.
2. Locally in the RAM. All memory space is cleaned by scrambling the information; this means there’s no leakage.

Where is the Private Password stored when I open Secured eMail?

Unsecured System:
The private password is stored in an encrypted database (Database A). A is encrypted with AES (Rijndael) using a static 256 bit key (B). B is stored in the binaries included in the installation.

Secured System:
The private password is stored in an encrypted database (Database A). A is encrypted with AES (Rijndael) using a static 256 bit key (B). B is stored in the binaries included in the installation. Database A is furthermore encrypted via AES (Rijndael) using a strong, random 256 bit key and "C". C is in turn encrypted via AES (Rijndael) with a 256 bit key and "D". D is a hashed version (via SHA256) of the private password of the user.

Logging On:
After logging on to Secured eMail, the private password is hashed and encrypted in memory to be used during the session when needed. Encryption is done via AES (Rijndael) with a randomly created key and "A", which is unique for every session. A is stored together with the encrypted password in the Page file, shared by all processes in the system.

Logging Out:
After logging out of the system, all keys that are stored in the memory are destroyed.

We want to try the Enterprise Trial, how and where can we get it?

Contact any sales person at Cryptzone for the Enterprise Trial.

How long can I try Enterprise?

Normally the trial period is 1 month, however longer trials are available when needed.

How do I uninstall my Client software?

1. Go to Start - Program - select Secured eMail
2. Select uninstall Secured eMail

1. Go to Start - Select Set Program Access and Default
2. Select Change or Remove Programs
3. Select Secured eMail client and click on uninstall
4. Click through the wizard and the software will uninstall

How do I uninstall or remove the Enterprise version?

If you want to remove the entire Enterprise system, it is recommended that you remove first the Client, then the Admin Tool and finally the Server.

1. Go to start - select Set Program Access and Defaults
2. Open Change or Remove Programs
3. Remove the Client: Select Secured eMail client. As a security procedure, when you remove the client you will need the Master password.
4. Remove the Admin Tool: Select Secured eMail Enterprise Admin Tool and click <Remove>
5. Remove Server: Select Secured eMail Enterprise Server, click <Change>, select Remove, and click <Next>.
6. Reboot the system

Can I upgrade from any client version to 3.2 for free?

Yes, if you have a client desktop version you may upgrade for free. However if you want to add Secured eFile or Secured eUSB you will need to purchase a new license key. Contact our sales department to do this.

I purchased Secured eFile from the Web Shop but when I applied the license to my recently upgraded client it turned into the Reader.

The upgrade is only valid for the Secured eMail client, if you want to upgrade with a new product at the same time, you will need to contact support and inform them to add the Secured eMail client upgrade to the license.

I have upgraded the Enterprise Server and Admin Tool, what is the easiest way to upgrade the clients?

From within the Admin Tool, click Tools from the top menu and select create upgrade installer. From here you can create an upgrade installer with appropriate profile for the clients.

Your Web Shop refuses to accept my Credit Card, what can I do?

1. Check that you have covered the purchase amount in your account
2. Check that your card has not expired
3. Contact Secured eMail Support

Is Secured eDisk Protect completely integrated in the SEP platform?

Currently Secured eDisk Protect is not completely integrated in the SEP platform, that means it cannot be managed from the Cryptzone Management Console, but has ist own central management via AD or ADAM. Secured eDisk Protect is a coorporation with our partner Safenet. Its full integration into the SEP platform is planned for future releases.

What should I prepare for a Secured eDisk Trial installation?

1. Download the software from here to your desktop and unpack it.
2. You need a pc/laptop that is not in use (meaning that if you make a mistake when you are playing around, no important data can be lost).
3. It would be good if you have a USB memory stick that you can use to store your encryption keys to make recovery possible.

Where do I get detailed instructions for installation, configuration and recovery of Secured eDisk Protect?

In this PDF-file