Igor Kromin |   Consultant. Coder. Blogger. Tinkerer. Gamer.

All GSuite users will soon have confidential mode enabled on their accounts by default. Google sent out a notice to admins telling them that confidential mode beta can be enabled already, so I thought that I'd try it out and see if it's any good. This mode is available in the public Gmail as well and looks the same as in GSuite.

So what is this mode? Well this is how Google describes it...
Gmail users can help protect sensitive information from unauthorized access using Gmail confidential mode. Recipients of messages in confidential mode don't have the option to forward, copy, print, or download messages, including attachments. Users can set a message expiration date, revoke message access at any time, and require an SMS verification code to access messages.

To use it, when composing a new email, click the Lock and Clock icon in the attachment toolbar.


That will bring up a dialog box with various options for confidential mode.


The recipient is sent an email from your email address, but it's not the email you wrote, instead it has a link to view your email.


To view the email, the recipient has to enter a code, which Google sends to them.



Then after the recipient's identity is confirmed, the confidential email is shown in the web browser. It's not possible to copy or forward any of this content. The right click menu is disabled too. On the surface of it, it looks like a this achieves what Google set out.


However, Google also mentions this...
Important: Although confidential mode helps prevent the recipients from accidentally sharing an email, it doesn't prevent recipients from taking screenshots or photos of your messages or attachments. Recipients who have malicious programs on their computer may be able to copy or download your messages or attachments.

And indeed this is where the confidential mode breaks down. There is no way to prevent screenshots or downloading and re-forwarding attachments. There is also no way to prevent savvy users from looking at the web page source code and copying the entire email content from there...


So yes this may be a nice feature to send time-limited emails and to prevent the casual user from being sneaky, but it won't ultimately prevent anyone from overcoming controls that Google set in place. The best part of this feature is probably recipient identity validation rather than the time limitation or copy/paste protections. Since the recipient is asked to confirm their identity, you can be guaranteed that it will be only them that can view the email, and that's good to have sometimes.


A quick disclaimer...

Although I put in a great effort into researching all the topics I cover, mistakes can happen. Use of any information from my blog posts should be at own risk and I do not hold any liability towards any information misuse or damages caused by following any of my posts.

All content and opinions expressed on this Blog are my own and do not represent the opinions of my employer (Oracle). Use of any information contained in this blog post/article is subject to this disclaimer.
Hi! You can search my blog here ⤵
NOTE: (2022) This Blog is no longer maintained and I will not be answering any emails or comments.

I am now focusing on Atari Gamer.