# Email Security

## Certificates

Certificates can be uploaded into Email This Issue to process encrypted emails with Mail handlers. Currently, only PKCS12 certificates are supported.

<figure><img src="https://880912854-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mf8H-oTE_fhOrUtfYrN-2724419853%2Fuploads%2FAnhKUnvA8URNW9fXxY29%2FScreenshot%202024-01-30%20at%2013.07.01.png?alt=media&#x26;token=87c4ae51-10fb-4192-9553-3928717a091d" alt=""><figcaption><p>Certificate listing page</p></figcaption></figure>

### Adding Certificate

To upload a Certificate the following are compulsory:&#x20;

* a name&#x20;
* the certificate file itself&#x20;
* the corresponding Certificate and Private Key passwords (these are usually identical). Please keep in mind that the name should be unique across all the certificates.

<figure><img src="https://880912854-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mf8H-oTE_fhOrUtfYrN-2724419853%2Fuploads%2FRB3Z8ZNKCw4mfVFtTRSM%2FScreenshot%202024-01-30%20at%2013.12.57.png?alt=media&#x26;token=3829c935-345a-47ce-8eef-2db8183fff9d" alt=""><figcaption><p>Certificate add screen</p></figcaption></figure>

Certificates are not editable, therefore if a certificate expires a new one has to be created.

To ensure the safety of the Certificates, we are encrypting them even before writing them into the database, where it will receive database-level encryption same as all of the data stored by us.