People expect their email to be private between them and the recipient, but in reality, the contents of your email are exposed during transmission. Full end-to-end encryption would mean that only the receiver of the email can decrypt their messages, but sharing public keys and agreeing on a common encryption standard can be tricky for most users. Plus, if email communications are fully encrypted along the entire path, then there’s no opportunity for a service in the middle, such as Gmail or Office 365, to check for spam, automatically sort emails into folders, or offer full-text searches.
Unless the platform is integrated with a company’s email gateway, firewall, and data loss prevention system, end-to-end email encryption may also prevent enterprises from monitoring for suspicious traffic. “Right now, a large number of companies just don’t have a solution dealing with encrypted email,” says Tom Fuhrman, cyber security practice leader at Marsh Risk Consulting.