Vision About UsTechnologyContact Us

Vision

We combine deep IT security expertise with high-powered business services technology to provide easy-to-use and secure productivity solutions to our customers. Our solutions support privacy and improve customers' efficiency and competitive positions, at every level of data protection for our customers and their users. Our differential: easy to use & stops customer data theft.

We are at your disposal to help you identify new ways to enable your company to serve your customers, while minimizing the risk of exposure. Please Contact Us.

About Us

ZSentry™ is a technology developed by NMA Inc., a California corporation. ZSentry is represented in patent-pending technology and software used by services at this site, provided online and offline. Zmail™ and Zvote™ are services developed by NMA using ZSentry.

About Our Technology

Why yet another secure email technology?

Transport Layer Security (TLS) and its predecessor Secure Sockets Layer (SSL), developed ca. 1996, are well-known cryptographic protocols that support secure communications on the Internet, usually by means of Public-Key Infrastructure (PKI, X.509 standard) server certificates. SSL/TLS is very successful in ecommerce today. Because of its simplicity, SSL/TLS is used by some secure email providers including Gmail™ and Postini™. However, SSL/TLS falls short of basic email security requirements. For example, because SSL/TLS messages are only encrypted in-between end-points, third parties can compromise message security and integrity at the security-gaps created at each SSL/TLS end-point (i.e., not only at Gmail or Postini but also at the recipient’s ISP), and at the recipient’s machine.

Password-based email encryption is cumbersome to use, has no first-contact capability, and is trivially open to exploits by spoofing and phishing attacks. In addition, because users are likely to choose a weak password (even though it may look strong) and not periodically expire them, password-encrypted email may be rather easy to crack by the same automatic dictionary attack tools already in use to crack password files effectively.

Regarding security technologies that have been developed specifically for the needs of email security, lack of a usable and secure solution for managing cryptographic keys has been a major failure point.

For example, with PKI and Pretty Good Privacy (PGP, as used by PGP™ and Hushmail™), a user's private-key is embedded in a password-protected file that can be attacked and cracked.

PKI/X.509 end-user certificates provided for example by VeriSign™ or Thawte™, which are required in order to use PKI for email security, have a number of well-known problems (including cost, lack of revocation status assurance, spoofing, and lack of first-contact capability).

PGP, even though it can be used without any cost, lacks a reliable facility for certificate revocation status, uses a web-of-trust certificate issuance method that does not scale beyond small groups, and lacks first-contact capability.

With Identity-Based Encryption (IBE, as used by Voltage™ and MessageGuard™), the private-keys of all users must be stored in the servers and may be available to third-parties without user authorization (this is called mandatory key-escrow).

Therefore, for the conventional email security solutions, when the key management solution is secure (PKI, PGP), it is not usable (complexity, counter-intuitive behavior when compared to postal mail, unreliable key certificate revocation, and other known issues). When it is usable (SSL/TLS, password-based, IBE, Voltage, MessageGuard), it is not secure (security-gaps, weak passwords, open to phishing and spoofing, mandatory key-escrow, no key revocation, and other known issues).

NMA developed ZSENTRY to allow any two parties, possibly with no previous contact, to establish a secure and private communication channel (e.g., a secure email message exchange using Zmail) without the usability and security shortcomings of conventional technologies such as passwords, PKI, PGP, IBE, and SSL/TLS.