- Nov 10, 2017
Google announced today that Gmail's client-side encryption (CSE) is now available for Android and iOS devices, giving users more control over encryption keys and data access. Client-side encryption was added to the web version of Gmail earlier this year. It lets users read and write encrypted emails directly from their devices.
In its blog post, Google stated:
While Workspace encrypts data at rest and in transit by using secure-by-design cryptographic libraries, client-side encryption ensures that you have sole control over encryption keys and access to your data. Client-side encryption ensures sensitive data in the email body and attachments are indecipherable to Google servers — you retain control over encryption keys and the identity service to access those keys.
The feature is available to the users of Google Workspace Enterprise Plus, Education Plus, and Education Standard. Client-side encryption is not supported on other Workspace editions such as Essentials, Business Starter, Business Standard Plus, etc. Also, it is not available to users with personal Google accounts.
Gmail's client-side encryption is now available on Android and iOS devices for eligible users. The security feature getting a rapid release is supported on select editions of Google Workspace.