Organizations adopt data encryption strategies to secure sensitive information. But data encryption complicates the review of content in support of investigations, for reading email on mobile devices, and inspecting email content for malware. DecryptNaBox solves these challenges by securely automating the content decryption process and eliminating the inefficiency associated with traditional methods. DecryptNaBox meets Federal Standard FIPS 140-2 level 2/3 requirements for the protection of cryptographic keys.
Inspection of electronic data is essential for legal eDiscovery, government investigations, and policy compliance reviews. Use of data encryption complicates the content review process for timely and complete inspection. DecryptNaBox delivers a secure and efficient solution for review of encrypted content.
Data encryption can introduce challenges for reading encrypted email on mobile devices. Policies that limit use of private keys on mobile devices or require credentialing on smart cards (PIV/CAC) can introduce added challenges. DecryptNaBox and MobileDecrypt deliver the solution to read encrypted email.
Significant investments are made to protect digital assets and the integrity of computer networks against malware and computer viruses. Encrypted email content renders malware and anti-virus tools ineffective. DecryptNaBox enables full content review by malware and anti-virus technologies.
DecryptNaBox eliminates the need for private key escrow during data decryption by separating the decryption process into two different functions. The Data Decryption function is responsible for data decryption using a decrypted message session key. The Session Key Decryption function handles the decryption of the message session key to be used by the Data Decryption function. Architected with this separation of Session Key and Data Decryption functions, the need for a local copy of the user's private key to perform data decryption is eliminated.
PKI encryption uses the message session key to encrypt message content. The message session key is then encrypted with the sender and recipient public key. Zeva’s KeyDecrypt securely decrypts session keys so that user private keys are not needed for content decryption.
The process to decrypt data is different based on the business need, such as support for legal-compliance investigations or anti-virus content inspection. Zeva’s DataDecrypt is available in multiple editions to optimize efficiency and meet the specific business need.
Messages remain encrypted on mobile devices until credentials are available. Private key storage on mobile devices poses security risks, and smart card credential use adds complexity. Zeva’s MobileDecrypt allows encrypted messages to be read on the device without a private key.