At the end of 2022, we read several noteworthy announcements that demonstrate that big companies are paying more and more attention to protecting users’ data. Google has announced that it’s adding end-to-end encryption to Gmail on the web, allowing Google Workspace users to send and receive encrypted emails within and outside their domain. On the other hand, Apple has introcuced client-side encryption in its services, too: Apple is now offering users „the choice to protect the vast majority of their most sensitive iCloud data with end-to-end encryption so that it can only be decrypted on their trusted devices”.
We strongly endorse these decisions, recognizing them as outstanding steps in enhancing data security, which is an essential matter for us. We strongly recommend that business users leverage the benefits of an HSM to address this issue. For example, Google’s client-side encryption can be enhanced by retaining of the encryption keys and storing them in a secure HSM – for example in the Trident HSM, as we detailed it in our previous blog post.