Content Chapters

This whitepaper is also available in ".pdf" format.

Chapter 1: Introduction

Overview
Exceeds Federal Guidelines
Transparency to End-User
Eliminates Spam

MyMail^SM Email Service -

Email Privacy and Security Overview

Chapter 1 - Introduction

Today’s concerns about security and privacy on the Internet are justified. This paper addresses these concerns as they relate to email communications and discusses how MyMail^SM provides the best-in-class solution by drawing upon its patented and patent pending technologies.

Overview of MyMail^SM

Every day your personal details and private information are released to advertisers, market data collectors, snoopers and hackers without your knowledge. This makes you vulnerable to spam and identity theft. With MyMail's patented technology, these threats are eliminated. Simple to use and highly protective of your personal and private information, MyMail Technology understands that it’s your mail, not our mail, nor anyone else’s mail.

MyMail^SM differs from standard email solutions in that:

In the actual communication and delivery of email messages – email messages are delivered safely and securely across the internet;

Email is delivered safe and secure with MyMail<sup>SM</sup> .

In the storage and retrieval of email messages – each email message is stored securely in an encrypted format, which only the intended recipient (the email inbox owner) can open and access.

Each email message is stored securely in an encrypted format.

As a result, individuals, businesses, schools and governments can rest assured their email messages are kept private and confidential.

Recent changes made to the “terms of service agreements” by most free email service providers and internet service providers shows that personal and private communication data, presumed to be private and personal, are not private at all. For example, the providers scan and read every email message for information to sell to advertisers to “help keep their prices competitive.” Here’s a snippet from one popular free email service provider terms of service:

“… You understand and agree that the Service may include content-targeted ads or other related information … [company] disclaims all responsibility and liability for the availability, timeliness, security or reliability of the Service … [Company] also reserves the right to access, read, preserve, and disclose any information as it reasonably believes is necessary… [Company] may monitor, edit or disclose your personal information, including the content of your emails…”

Here’s what a popular ISP is doing

“… within the next few weeks you will begin seeing graphical advertisements in your Mail… These advertisements will be integrated into your Mail experience, and we hope you will find the advertisements useful. Advertising … helps us keep prices competitive, while we continue to provide the high level of service that you have come to know and trust …”

Exceeds Federal Guidelines for Security and Privacy Requirements

MyMail^SM meets and exceeds the demanding security and privacy requirements set forth in the “Security Standards: Technical Safeguards of the Health Insurance Portability and Accountability Act” (HIPAA) known as the “Security Standards for the Protection of Electronic Protected Health Information,” published at 45 CFR Part 160 and Part 164.

MyMail^SM meets the demanding privacy requirements set forth in the Family Educational Rights and Privacy Act (FERPA) pursuant to 20 U.S.C. § 1232g; 34 CFR Part 99.

MyMail^SM also meets the requirements of the Graham-Leach-Bliley Act relating to disclosure of nonpublic personal information.

MyMail^SM's security audit has been validated by the Physics Department of Angelo State University (ASU), the host of the State of Texas Data Center for HIPAA and FERPA compliance in addition to rigorous security privacy standard tests. For specific details on how MyMail^SM addresses FERPA, HIPAA and GLBA see the Independent Security Audit Report done by Angelo State University, 2601 West Ave. N, San Angelo, Texas 76909; http://www.angelo.edu.

Provides Security and Privacy that is Transparent to the End-user

MyMail^SM is so easy to use that it’s virtually transparent to the end-user/general email user. MyMail^SM ensures that each email message stored is uniquely encrypted using dynamically generated encryption keys for the ultimate security and privacy, without special plug-ins or retraining end-users on how to secure special email messages.

Standard email servers provide very little security and offer no privacy. MyMail^SM protects every email account from unauthorized system administrator snooping and access, and illegal access to email data by hackers. By design, MMyMail^SM’s secure email architecture:
1. always uniquely encrypts every email message, including the “Subject” and “From” fields in the email message header,
2. can be configured to eliminate the ability of unauthorized system administrators, hackers or snoopers from changing or breaking email access passwords to gain quick access to email messages,
3. separates the encryption/decryption keys from the email message data in a manner that provides security and privacy that exceeds the requirements of HIPAA and FERPA.
Using MyMail^SM for all email services (secure and non-secure) actually increases security by reducing the otherwise inherent security risks caused my large amounts of email message data stored. Using traditional encryption methods to store large amounts of data causes detectible repetitive patterns to appear in the data. This is a natural result of using the same encryption keys to encrypt all data, thus providing a mechanism to gain access to the entire original email message. MyMail^SM eliminates repetitive pattern detection by uniquely encrypting each email message using its own set of dynamically generated keys.
MyMail^SM encrypts every message using two or more algorithms, one to encrypt the email message body and attachments, and the other to encrypt portions of the email header (the subject and senders email address field). Additionally the decryption message keys are encrypted using a dynamically generated key pair which requires each mail recipient’s password to open and access.
All network communications between servers implementing MyMail^SM uses Secure Socket Layer (SSL) and Transport Layer Security (TLS)to ensure secure private data transmission, making it compatible with all SSL Email Client programs such as Microsoft Outlook, Mozilla Thunderbird, and Apple Mail. MyMail’s SES supports secure web access through any “https” compliant web browser, including Microsoft Internet Explorer, Mozilla Firefox and Camino for Mac.

Eliminates spam with its Netsafe Email Address Authenticator

Netsafe^SM has been described as the “Best spam eliminator I have ever seen”, by James P. Keffer, President, Orthobionics, Inc. Although technically not a spam detector, Netsafe^SM eliminates spam by authenticating the email address of the sender of each email message prior to delivering to the recipient’s email inbox. Netsafe^SM puts each user in control of how and which email comes into their inbox.
NetSafe^SM works by using a sender-self-authentication mechanism that adds legitimate email addresses to each users whitelist and illegitimate email address to each users’ blacklist and “yet to be identified” addresses to a holding box, which is accessible by each email recipient through a secure web-browser interface.

Return to top of page

Go to Chapter 2: Applications