PDF download Download Article
Safely send sensitive documents, links, and more from your iOS device with end-to-end encryption
PDF download Download Article

This wikiHow teaches you how to send encrypted email from the iPhone or iPad Mail app. You must have already exchanged certificates with a recipient to send or receive an encrypted message.

Using Encryption in Mail

To send encrypted messages in Mail, get an S/MIME certificate and install it on your device. Next, enable encryption and signing in Settings. You may need to exchange digitally signed emails with your recipient before sending them an encrypted message.

Part 1
Part 1 of 3:

Installing an S/MIME Certificate

PDF download Download Article
  1. To send encrypted messages from your iOS device, you’ll need to install an S/MIME (Secure/Multipurpose Internet Mail Extensions) certificate on your iPhone or iPad. If you’re using an official organizational account (e.g., from your school or workplace), you may be able to get a certificate from your organization. You can also get a certificate from a certificate authority (CA).
    • Free S/MIME certificates are available from companies like Actalis and Comodo .
    • When you sign up for a certificate, you’ll receive a password that you’ll need to install the certificate. Copy it or write it down and keep it in a safe place so you don’t lose it.
  2. Typically, you’ll be sent an email with the file you need to install your S/MIME certificate. Open the email on your iPhone or iPad and download it to your device. Save it to a location in your Files that you can easily find again.
    • Unzip the file if necessary. Your certificate may arrive as a compressed .zip file. Just tap on it to unzip it.
    Advertisement
  3. Once you’ve downloaded and unzipped the file, tap on it to open it. A popup will open asking you to select which device you want to install it on.
    • For example, if you’re on your iPhone, tap iPhone in the Choose a Device popup.
    • Tap Close on the Profile Downloaded popup.
  4. You’ll need to go into
    iPhone Settings App Icon
    Settings to complete the installation process.
  5. It will be close to the top of your Settings menu, under your Apple ID settings. A new screen will open with information about the certificate you downloaded.
  6. It’s in the top right corner of the screen.
  7. This is the same passcode you use to unlock your iPhone or iPad.
    • Note that you can’t install an S/MIME certificate unless you have a passcode enabled on your device. You can’t use Face ID or Touch ID to complete this process.
  8. If the certificate you downloaded is unsigned, you may see a screen warning you that you’re about to install an unsigned profile. Tap Install to continue, then tap Install again to verify your choice.
  9. You should have received this password when you requested the certificate. Tap Next to continue.
  10. Your new certificate is now installed!
  11. Advertisement
Part 2
Part 2 of 3:

Enabling Encryption in Mail

PDF download Download Article
  1. It’s usually at the bottom of the Home Screen. [1]
  2. Scroll down until you find Mail in the main Settings menu. It’s in a group with other built-in apps that come with your iOS device. Tap it to open a new screen.
  3. It’s near the top of the menu.
  4. All the email accounts linked to your device appear under the Accounts header. Tap the one you want to use to send an encrypted message.
  5. You’ll see this option near the bottom of the menu for your selected account.
  6. It’s at the bottom of the screen.
  7. It’s the last option in the Advanced menu.
  8. In the next screen, tap the Encrypt by Default switch. If it turns green, you have successfully turned on S/MIME encryption.
    • If you don’t have a valid certificate installed already, you won’t be able to switch this setting on. The switch will stay grayed out.
    • Your certificates will be listed on the same screen, under the Certificates header. If you see more than one certificate, select the one with the most distant expiration date.
  9. For an extra layer of security, enable the Sign feature. This will also allow you and your recipient to exchange public keys so you can send and receive encrypted messages. From the Encrypt by Default menu, tap Back to return to the Advanced screen. From there:
    • Tap Sign under the S/MIME header.
    • Toggle on the switch next to Sign .
    • If there are multiple certificates to choose from, select the same one you used when you toggled on Encrypt by Default .
  10. You are now ready to start sending encrypted and signed emails.
  11. Advertisement
Part 3
Part 3 of 3:

Sending Encrypted Emails

PDF download Download Article
  1. It’s the envelope icon that’s usually at the bottom of the home screen.
  2. If you’re using an Exchange account and you and your recipient are already in the same Exchange environment, or if you’re both using email accounts provided by the same organization, then you may be able to send encrypted emails automatically. Otherwise, there will be a few more steps involved. [2]
    • Check the “To” field to see if there’s a blue lock there.
      • If you see an unlocked blue icon, simply tap it to lock it, then go ahead and send the message.
      • If the blue lock icon is already locked, leave it alone and send the message. The message is already encrypted.
      • If you see a blue lock with a line through it, you’ll need to exchange public keys with the recipient before you can send them an encrypted message. Go on to the next steps.
  3. If you see a closed blue lock icon with a line through it next to the To: field, your email to the recipient will be sent with standard (TLS) encryption. This is the standard encryption level for most email messages. In this case, send a digitally signed email to your recipient asking them to send a signed email back.
    • If you toggled on Sign in your account settings when you enabled encryption , your email will be signed automatically. Your recipient will receive an email with your public key attached.
    • They will need to obtain their own S/MIME certificate in order to send you a signed email.
  4. If their signature is trusted, you’ll see a blue checkmark icon next to their address, and you should now be able to send them an encrypted message. If you see a red question mark next to their address when you tap it, you’ll need to manually install their certificate:
    • Tap their email address and then tap View Certificate .
    • Tap Install . When the Install button changes to a red Remove button, tap Done in the upper right corner of the screen.
    • iOS will now associate the certificate you just installed with the sender’s email address, allowing you to exchange encrypted messages with them.
  5. Fill in your recipient’s email address. If you see an unlocked blue lock icon, tap it to lock it and enable encryption. If the lock icon is already locked, leave it alone.
  6. The encrypted message will be delivered to the recipient. Only the recipient will be able to access the message, as they have your public key.
  7. Advertisement

Expert Q&A

Ask a Question
      Advertisement

      wikiHow Video: How to Send an Encrypted Email on iPhone or iPad

      Watch


      Tips

      • If you reply to or forward a message, the default encryption state will match that of the message you’re responding to. [3]
      Submit a Tip
      All tip submissions are carefully reviewed before being published
      Name
      Please provide your name and last initial
      Thanks for submitting a tip for review!
      Advertisement

      About This Article

      Article Summary X

      Before you can send an encrypted email on your iPhone, you'll need to install your S/MIME certificate. To do this, open the email containing the link to your certificate, which would usually come from your employer or a certificate authority provider, and then tap the link to open the "Install Profile" window. Now, tap "Install" at the top-right corner and enter your iPhone's passcode. Next, enter the password for your certificate, tap "Next," and then tap "Done." Now you can set up encryption for any account you have connected to the Mail app. Open the Settings app, select "Mail," and then tap "Accounts." Tap the mail account you want to use to send encrypted email, then tap "Account" at the top of the screen. Tap "Advanced" at the bottom to open additional settings. Now, tap the S/MIME switch to turn it on. Then, tap "Sign," toggle on the switch, and tap the back button. You'll also need to tap "Encrypt by default" and toggle that switch on as well. Now, open the Mail app, and select the contact you want to email. As long as this contact has sent you their own digital signature, you'll see a blue padlock next to their name in the "To" field. If the padlock is open instead of closed, the contact hasn't yet sent you their digital signature. In this case, send them an email asking them to install their own certificate and send you a signed message so you can exchange signatures. When you see the blue padlock next to the recipient's name, you'll know the message you send will be end-to-end encrypted.

      Did this summary help you?
      Thanks to all authors for creating a page that has been read 83,772 times.

      Is this article up to date?

      Advertisement