zsentry.com - Mobile, Web, and Desktop Security

Audience: technical

Reset Account
Credential Recovery
Delete Account
Premium Sign Up

Help
New Users
Desktop Set Up
Browser Test
Regulatory Compliance
How Zmail Works
Frequent Questions
Support Center

Resources
ZSentry SAML
ZSentry API
ZSentry Director
Technology
Say it Privately™
Service Updates

Mission About UsExperienceTechnologyContact Us

Mission

Spend Less. Communicate Better.

We uniquely combine deep IT security expertise to bring you NMA ZSentry, a next-generation technology that is at the same time affordable, secure, and usable.

NMA ZSentry enables a platform for secure productivity solutions, that you can readily extend, and provides proven solutions with "instant-on" service modules such as Mail and Payments that work with the software you already have. No plugins or installation.

NMA ZSentry differential includes being easy to use, eliminating online data theft targets for our customers and their users, and in providing enhanced functionality with existing customer investments.

We are at your disposal to help you identify new ways to enable your company to spend less and communicate better, while minimizing the risk of exposure. Please Contact Us.

About Us

As used online, "secure" is a property of machines and "usability" is a property of humans. This understanding and work division is critical to treat them in adequately different manners, so that online security (a property of machines) can become usable (a property of humans). Thus, we see that online security is evolving to satisfy human needs, and the way ZSentry has been developed is functional with respect to these needs rather than arbitrary.
Ed Gerck, PhD, NMA CEO

This work thus confutes the conventional thinking that usability and security are like a seesaw; if usability goes up, security must go down, and vice-versa. This apparent antinomy can now be seen as a synergy: With more usability in a secure system, security increases. With less usability in a secure system, security decreases. A secure system that is not usable will be left aside by users.
Vernon M Neppe MD, PhD, FRSSAf, NMA User Advocate

ZSentry™ is a technology owned and developed by NMA Inc., a California corporation. This web site and services are a property of NMA, Inc. ZSentry is represented in patent-pending technology and software used by services at this site, provided online and offline. Zmail™ (ZSentry Mail™) was the first ZSentry application developed by NMA.

Experience

Since 2004, Zmail has been trusted worldwide with millions of secure messages.

Read About Our Experience >>

About Our Technology

Why yet another secure email technology?

Transport Layer Security (TLS) and its predecessor Secure Sockets Layer (SSL), developed ca. 1996, are well-known cryptographic protocols that support secure communications on the Internet, usually by means of Public-Key Infrastructure (PKI, X.509 standard) server certificates. SSL/TLS is very successful in ecommerce today. Because of its simplicity, SSL/TLS is used by some secure email providers including Gmail™ and Postini™. However, SSL/TLS falls short of basic email security requirements. For example, because SSL/TLS messages are only encrypted in-between end-points, third parties can compromise message security and integrity at the security-gaps created at each SSL/TLS end-point (i.e., not only at Gmail or Postini but also at the recipient’s ISP), and at the recipient’s machine.

Password-based email encryption is cumbersome to use, has no first-contact capability, and is trivially open to exploits by spoofing and phishing attacks. In addition, because users are likely to choose a weak password (even though it may look strong) and not periodically expire them, password-encrypted email may be rather easy to crack by the same automatic dictionary attack tools already in use to crack password files effectively.

Regarding security technologies that have been developed specifically for the needs of email security, lack of a usable and secure solution for managing cryptographic keys has been a major failure point.

For example, with PKI and Pretty Good Privacy (PGP, as used by PGP™ and Hushmail™), a user's private-key is embedded in a password-protected file that can be attacked and cracked.

PKI/X.509 end-user certificates provided for example by VeriSign™ or Thawte™, which are required in order to use PKI for email security, have a number of well-known problems (including cost, lack of revocation status assurance, spoofing, and lack of first-contact capability).

PGP, even though it can be used without any cost, lacks a reliable facility for certificate revocation status, uses a web-of-trust certificate issuance method that does not scale beyond small groups, and lacks first-contact capability.

With Identity-Based Encryption (IBE, as used by Voltage™ and MessageGuard™), the private-keys of all users must be stored in the servers and may be available to third-parties without user authorization (this is called mandatory key-escrow).

Therefore, for the conventional email security solutions, when the key management solution is secure (PKI, PGP), it is not usable (complexity, counter-intuitive behavior when compared to postal mail, unreliable key certificate revocation, and other known issues). When it is usable (SSL/TLS, password-based, IBE, Voltage, MessageGuard), it is not secure (security-gaps, weak passwords, open to phishing and spoofing, mandatory key-escrow, no key revocation, and other known issues).

NMA developed ZSENTRY to allow any two parties, possibly with no previous contact, to establish a secure and private communication channel (e.g., a secure email message exchange using Zmail) without the usability and security shortcomings of conventional technologies such as passwords, PKI, PGP, IBE, and SSL/TLS.

Read About Our Technology >>

Technical Notes

Overview Key Features Security Usability HIPAA Experience Why ZSentry? Red Flags

Titles and product names are trademarks of NMA, Inc. as described in our Legal Statement. We protect Your Privacy.