SecureLine Message Center – Free Centralized Secure Email Access
LuxSci’s SecureLine customers send encrypted email messages to recipients all over the world using the SecureLine Escrow system — recipients receive a notification of their waiting secure message and click on a link to access it after either answering a security question or logging into their free SecureSend account to verify their identities.
The new SecureLine Namespace and Message Center features now enables your recipients to login and see a history of all secure messages sent to them from your users and to easily open, re-read, reply to, and delete these historical messages any time … at least until they have expired.
Life without Message Center
Without Message Center enabled, each secure message sent using Escrow is encrypted using a unique password which is part of the message access link sent to the recipient in his/her “notification email”. The recipient must then click on that link in order to open the waiting message … so that the password to unlock the message can be transmitted back to the server.
This is very secure, as all of the saved secure messages cannot be opened by anyone (even the LuxSci software developers), as the unique password used to encrypt the sent secure message exists only in the recipient’s INBOX.
The down side to this highly secure email communication method, however, is that some convenience is sacrificed:
- A deleted or lost notification message results in permanent loss of access to the respective secure email message.
- As each secure message has a different password, access to one message cannot grant you access to other messages.
Life with the Message Center
With Message Center enabled, two things conspire to drastically improve usability at the cost of some security:
- All messages sent via Escrow are encrypted using passwords known to the back-end system but not embedded in links sent to the recipients.
- Recipients have a “Message Center” area in their SecureSend portals where they can see and search lists of messages that they have previously received, and they can open ones sent when Message Center was enabled (because the system knows the passwords to them).
Message Center enables the SecureSend portal to act like an INBOX (or patient portal for healthcare customers). It also allows the recipients to:
- Reply to any previous message
- Send a new email to anyone who has previously sent them a message
- Delete messages previously received
- View / download / print previously received messages
The main security sacrifice is additional trust in the LuxSci server infrastructure and support staff — while the message data and passwords are NOT located on the same servers, they are in the same distributed system. This tradeoff in security for usability is a common one we see in online portals these days in medical, finance, and other security sensitive fields.
Message Center is optional and not enabled by default, as it requires purchasing the “Premium 5″ Private Labeling tier or above. Customers need to decide if this functionality is appropriate for them.
What about these “Namespaces”?
Namespaces are another new feature for Premium Private Labeled customers. The best way to understand Namespaces is to see how things work without them.
- Multiple Private Labeled customers can have their own distinct SecureSend portals — they can look and feel like each respective organization, have branded URLs for access, etc.
- Recipients who register for “SecureSend” at any of these private labeled SecureSend portals get placed in the same “pool of registrants” … so:
- They can use the same username/password to login to any of the Private Labeled SecureSend portals
- Once logged in — it’s the same account and account history, just with different aesthetics
- If they try to register for another SecureSend account with another Private Labeled SecureSend portal, it will tell them that they already have an account.
- It will be clear to the end user that these sites share the same back-end provider and that their activities are not segregated between the sites.
- Customer defines a “Namespace in his/her Private Labeling tools
- SecureSend registrants to the customer’s Private Labeled theme are placed in this different “pool of registrants”
- Logins and account history are unique to this theme.
- End users can register for other SecureSend accounts in other themes without the account in the custom Namespace ever being referenced or involved.
Enabling Message Center
Message Center is available to customers with Premium Private Labeling.
- If you do not yet have Premium Private Labeling, you can order it in a new account, or you can upgrade your existing account to include it in the Upgrades area.
Message Center requires use of a SecureSend “Namespace”
- Under your Private Labeling administration area, you can go to “SecureSend User Namespaces”
- Create a new Namespace (and import users from the global shared namespace if you have been using SecureLine for a while already)
- Enable “Message Center” on this Namespace
- Select the Private Labeled theme that will be used with your Message Center in your list of themes
- Under “Advanced Configuration > SecureLine Pages”, you can select your new Namespace for use.
- SecureLine Sending Enhancements
- SecureLine Email Encryption Enhancements
- SecureLine End-to-End Email Encryption: Easier than Ever!
- Security: A Year in Review 2013
- SecureLine Escrow Message Pickup Simplified