cvmail uses SSL encryption to protect your information as you login. SSL, or Secure Sockets Layer, encrypts data so that if it is intercepted by a third party it cannot be read. SSL encryption is based on a system of certificates issued by well-known Certificate Authorities. You may have heard of some of these authorities, such as Thawte and Verisign. For detailed information on SSL security, please see the links below:

http://www.thawte.com/guides/
http://wp.netscape.com/security/basics/

SSL certificates can be used to confirm the identity of a website. When SSL is used a small padlock (or key) icon will display in your browser's status bar:

Double-clicking on the padlock (or key) icon will display the security certificate.

Certificate Authorities also confirm the organisation and ownership details when issuing certificates. As such, the information displayed on a certificate issued by a well-known authority can be considered trustworthy.

If you double click on the padlock icon, you will be presented with something simliar to this:

To ensure that you are genuinely viewing the cvmail website, you should confirm the Issued To: (in this case www.cvmail.net) and Valid From - to - information on the certificate. Expired certficates are not necessarily untrustworthy, but the information on a valid certificate will be more current and therefore reliable.

On our client login page, if the padlock icon does not appear, or if the certificate is not issued to www.cvmail.net, or if the address in the address bar is not showing, or if the address is only a series of numbers separated by dots (e.g. XXX.XXX.XXX.XXX), please avoid logging in and contact us with your concerns. Thank you. Email firmsupport@cvmail.net.