ID 10 T

Tag: business

  • RPost

    RPost

    RPost is a global company focused on secure and certified electronic communications. Founded in 2000, it has become a prominent player in the e-security and compliance sector, known primarily for its RMail and RSign product suites. The company’s core mission is to provide verifiable proof for digital communications and transactions, much like traditional registered mail does for physical correspondence.

    Core Technology

    RPost’s technological foundation is built upon its patented “Registered Email™” service. This technology transforms a standard email into a legally robust communication method by providing a high level of traceability and authenticity.

    RMail: Secure & Certified Email

    RMail is RPost’s flagship product, designed to augment existing email clients like Microsoft Outlook and Gmail with advanced security and compliance features. Its main functions include:

    • Track & Prove: This is the cornerstone of RPost’s offering. When a user sends an RMail, the service generates a Registered Receipt™. This is a self-contained and cryptographically sealed audit trail that serves as court-admissible proof of email content, attachments, and successful delivery time. Unlike standard email read receipts, it does not require any action from the recipient and provides a verifiable record of the entire SMTP transaction.
    • Encrypt: RMail simplifies email encryption with a one-click process. It ensures the security of email content and attachments from the sender to the recipient, protecting sensitive information in transit.
    • eSign: The platform allows users to send documents for electronic signature directly from their email, streamlining simple agreement workflows.

    RSign: Enterprise E-Signatures

    RSign is RPost’s dedicated e-signature platform, competing with services like DocuSign and Adobe Sign. It offers a comprehensive set of features tailored for business and enterprise use:

    • Advanced Workflow Control: RSign allows for complex signing orders, user-guided signing processes, and dependency logic, where one signer’s input can dynamically change the options available to subsequent signers.
    • Forensic Audit Trail: Every signed document is accompanied by a detailed Audit Trail and Signing Certificate. This forensic record logs every event in the signing process, including IP addresses, timestamps, and all actions taken by each participant, creating a robust legal record of the transaction.

    Encryption Methods

    RPost employs a multi-layered, user-friendly approach to encryption, designed to overcome the typical complexities associated with public key infrastructure (PKI) and manual key management.

    RMail’s encryption service operates on two main levels:

    1. Opportunistic Transport Layer Security (TLS): By default, RMail attempts to send messages over a secure TLS channel. It analyzes the entire transmission path to ensure end-to-end security.
    2. Message-Level Encryption (AES-256): If a secure TLS connection cannot be guaranteed for the entire delivery route, or if the sender chooses maximum security, RMail automatically escalates to message-level encryption. The email body and all attachments are encrypted using the AES 256-bit standard and packaged within a secure container (typically a password-protected PDF).

    The recipient receives a notification email with instructions to access the secure message. The decryption key is transmitted securely and automatically via a separate channel, a process RPost refers to as Dynamic Symmetric Key Encryption. This method ensures that the message remains secure even if intercepted, as the key is not transmitted with the encrypted content. The entire process is logged in the Registered Receipt™, providing proof of the encryption event.

    Open Source Options

    RPost’s technology is proprietary and closed-source. The company holds numerous patents on its Registered Email™ technology and the associated processes for generating verifiable proof.

    Organizations seeking purely open-source solutions would need to look at alternatives like GnuPG (GPG) for email encryption or platforms like OpenSign for e-signatures. However, these alternatives do not offer the same integrated, all-in-one proof and audit trail provided by RPost’s patented system.

    Pros and Cons

    Evaluating RPost requires balancing its unique legal and security benefits against its commercial and proprietary nature.

    Pros 👍

    • Legally Admissible Proof: The Registered Receipt™ is a significant differentiator, providing strong, court-admissible evidence that is far more reliable than standard email tracking.
    • Simplicity and User Adoption: The one-click interface for encryption and e-signing within existing email clients makes it easy for non-technical users to adopt, which is a major advantage for organizational deployment.
    • Recipient Accessibility: Recipients do not need to install any software or have an RPost account to receive an encrypted message or sign a document, reducing friction in business communications.
    • Comprehensive Audit Trails: Both RMail and RSign create detailed, verifiable records of all transactions, simplifying compliance with regulations like HIPAA, GDPR, and ESIGN.

    Cons 👎

    • Proprietary System: The closed-source nature of the platform can be a drawback for organizations that prioritize open standards to avoid vendor lock-in.
    • Subscription Cost: As a premium service, RPost’s subscription fees can be a barrier for individuals or small businesses with limited needs, especially when compared to free or lower-cost alternatives.
    • Potential for Recipient Confusion: While designed to be simple, some recipients may be hesitant to click links in an email to retrieve a secure message, which could lead to follow-up questions or delays.
    • Integration Effort: While APIs are available, fully integrating RPost’s services into complex enterprise systems and workflows still requires technical resources and planning.