- personal signature
- 1 year term
Email Certificates
for encrypted email communication
- ✓protection for sensitive emails
- ✓own digital signature
- ✓cost-effective
Products
S/MIME Email Encryption
Encrypt your email communication using S/MIME email certificates so that third parties cannot read it.
A Personal S/MIME certificate is intended for private use. Every private person can book a Personal S/MIME certificate for a secure email. Only the email address is verified and no extended verification, such as of address data, is performed. Nevertheless, there is a complete protection of the email communication.
Reviews on Expeero.com
The carbon footprint of the Internet with its servers and data centers is growing incessantly. However, in addition to using energy-efficient hardware, we can also actively support nature: With every new rating - whether positive or negative - we therefore have 2 new trees planted.
What is an S/MIME certificate?
The term S/MIME means Secure / Multipurpose Internet Mail Extension. It is a uniform standard for the encryption of an email communication. In order to be able to encrypt an email, a certificate consisting of a public and a private key is always required. No specific software is required to guarantee this encryption. Common Windows and Linux operating systems support the signing of emails by default.
Without encrypting emails using S/MIME, it is possible to read an email comparable to a postcard, since emails are transmitted in plain text. At best, the connection from the client to the mail server is encrypted using SSL, but not the email as such.
Certificate duration of email certificates
In contrast to SSL certificates, email certificates can be issued directly for a period of up to 3 years to ensure long-term signing of emails. With SSL certificates this is also possible, but here a renewal of the certificate has to be uploaded to the server every year. Users of S/MIME certificates for encrypting emails are spared this over the booked period.
As soon as an S/MIME certificate expires, it must be renewed in the same way as an SSL certificate, otherwise the email client (Outlook, Thunderbird or similar) will receive an error message when receiving the email. You should therefore renew your certificate in good time before the email encryption expires, in order to continue to ensure secure email communication by means of a valid email signature.
Providers of S/MIME certificates / certification authorities
As with SSL certificates, there are various certification providers on the market for S/MIME certificates. We rely on the certificates of SECTIGO (formerly COMODO) for the encryption of emails, because with the help of SECTIGO we can issue personal S/MIME certificates within minutes and without much effort. In addition, SECTIGO is one of the cheapest providers for signing emails on the market, so that there are no high costs, even if a large number of email addresses are to be provided with an S/MIME certificate.
On request we can also offer certificates from GlobalSign, Digicert or Thawte. Here, however, the costs sometimes differ significantly from our offered prices.
Order email signature certificate
In order to be able to issue an S/MIME certificate, we need a so-called CSR (Certificate Signing Request). When using Linux, it can be created as shown in the following.
Create private key:
openssl genrsa -out keyfile.key -des3 4096
Create the CSR, using the previously created private key file:
openssl req -new -key keyfile.key -out csrfile.csr
If you need assistance in creating the CSR, our customer support will be happy to help. Especially in the time of SPAM emails, signing emails is becoming more and more important and we will be happy to assist you in choosing the appropriate certificate.
Payment Methods
We rent the service to you and bill you for it regularly, at the agreed intervals and in the form requested by you. It is not necessary/possible to top up credit (pre-paid), but it is possible to cancel the booked service in good time if you no longer require it. The contract is automatically extended by the agreed term, so no refund can be made if the service is not used and no notice of termination is given.