Encryption in Office 365

  • by Bryan Antepara

SHARE

used with permission from Microsoft

Office 365 Message Encryption is an easy-to-use service that lets email users send encrypted messages to people inside or outside their organization. Designated recipients can easily view their encrypted messages and return encrypted replies. Regardless of the destination email service—whether it’s Outlook.com, Yahoo, Gmail, or another service—email users can send confidential business communications with an added level of protection against unauthorized access.

  • There are many scenarios in which email message encryption might be required, including the following:
  • A bank employee sending credit card statements to customers
  • An insurance company representative providing policy details to customers
  • A mortgage broker requesting financial information from a customer for a loan application
  • A health care provider sending health care information to patients
  • An attorney sending confidential information to a customer or another attorney
  • A consultant sending a contract to a customer

Exchange Online and Exchange Online Protection (EOP) administrators set up Office 365 Message Encryption by defining encryption rules. As an administrator, you can also customize encrypted messages with your own text and logo, presenting a company brand that’s familiar to message recipients.

About Office 365 Message Encryption

Office 365 Message Encryption is an online service that’s built on Microsoft Azure Rights Management. With Azure Rights Management set up for an organization, administrators can enable message encryption by defining transport rules that determine the conditions for encryption. A rule can require the encryption of all messages addressed to a specific recipient, for example.

When an Exchange Online user sends an email message that matches an encryption rule, the message is sent out with an HTML attachment. A recipient opens the HTML attachment in the email message, recognizes a familiar brand if that’s present, and follows the embedded instructions to sign in, open, and read the encrypted message on the Office 365 Message Encryption portal. The sign-in process helps ensure that only intended recipients can view encrypted messages.

The following diagram summarizes the passage of an email message through the encryption process.

  1. An Exchange Online user sends a message to the recipient.
  2. The message is filtered based on administrator-defined rules that define conditions for encryption.
  3. The tenant key for your Office 365 organization is accessed and the message is encrypted.
  4. The encrypted message is delivered to the recipient’s Inbox.
  5. The recipient opens the HTML attachment and connects to the Office 365 encryption portal.
  6. The recipient authenticates using a Microsoft account or an Office 365 organizational account.
  7. The tenant key for your Office 365 organization is accessed to remove encryption from the message and the user views the unencrypted message.

To learn more about enabling and using Office 365 encryption, contact eMazzanti.

UPCOMING VIRTUAL EVENTS

Demystifying Cyber Security for SMBs

sb-cyber-security-master-class

The continually changing threat landscape requires us to update best practices and add new concepts to keep your organization safe.

SESSION 4: Cyber Security Strategy
Watch On-Demand

SESSION 5: Cyber Insurance & MFA
Watch On-Demand

SESSION 6: Threat Detection | JAN. 15

LEARN MORE / REGISTER

Microsoft Copilot
Master Class Workshop

sb-microsoft-copilot-master-class

eMazzanti will host 60-minute Master Classes, that speak to how AI can help your business streamline and grow.

In each session, you will have Artificial Intelligence and Automation explained, view a live demo of Copilot, and see it live in action in a dynamic format.

LEARN MORE / REGISTER

RESOURCES

Cyber Security Awareness Hub

sb-Cyber-Security-Awareness-Hub

Cyber Security Awareness Kit, designed to be delivered to your team in bitesize chunks.

We are sharing the resources and highlighting services your organization needs, covering everything from multifactor authentication to software updates, showing your users just how easy it is to improve their security posture.

LEARN MORE / REGISTER

Resource Library

sb-resource-library

Insights to help you do what you do better, faster and more profitably.

> Tips to Stay Protected Against Phishing Attacks

> Understanding Ransomware 

> The 6 Known Wi-Fi Threat Categories Targeting Your Business and How to Defend Against Them

> Practical Advice for Avoiding Phishing Emails

VIEW ALL RESOURCES

Watch On-Demand

sb-watch-on-demand

Cyber Security Master Class Series | 3 Sessions

22 Years of Learning | 28 Sessions

Ransomware in the Cloud

WATCH MORE EVENTS

Recent Articles

The Executive’s Guide to Security Operations Center Models

Introduction to Azure Services

Introduction to Microsoft Copilot

Project Management: Why is it important?

Enhancing Website Performance and User Experience Through Caching Strategies

NEWSLETTER

Categories