I have some questions regarding email sent with CRES/Secure Compose/Websafe.
Let me give an example - I send an encrypted message to an external recipient (from on-prem via the ESA), and they reply to me using the reply function in CRES. I reply in turn within the browser. Their reply and my subsequent reply never shows up in my Exchange organisation, nor my Outlook. I understand that all the mails in this conversation are encrypted using the encryption key generated from my initial email.
1. Are the replies encrypted in transit and at rest in CRES?
2. How long are the reply emails retained for?
3. Are they retrievable/exportable at a later date?
Also, how is encryption handled when a user sends a mail directly from WebSafe? How are encryption keys generated, and at what point is the mail encrypted?
Thanks
Sean