Beyond the Roadmap: Pursuit of Customer-Driven Progress

Encryption Features    | September 10, 2025

New platform enhancements, directly shaped by feedback from top global enterprises, focus on streamlining administrative workflows, hardening security, and simplifying user experience.

When it comes to product management at Echoworx, listening isn’t just courtesy, it’s critical. Our engagements with the world’s most risk-aware, innovation-hungry enterprises are what guide us. These are organisations that balance conservatism with ambition: always boundary-pushing, never reckless, continually raising the bar both for themselves and for us.

Our approach to product evolution is straightforward. We build to earn trust. We improve to remove barriers. We act on what customers tell us; leading institutions, household names, organisations managing risk at a scale few can imagine. Their expectations are high, and rightly so: downtime, wasted cycles, and security gaps are simply unacceptable. Our job is to ensure our solution not only keeps up, but consistently leads.

With that in mind, we’d like to outline what’s included in our latest release. It’s a set of updates and enhancements not built for headlines, but for real enterprise advantage. Each new feature is a direct answer to practical challenges shared by customers actively using the platform, in some of the strictest regulatory environments globally.

Making Everyday User Journeys Effortless

The reality is small annoyances in day-to-day tools can quietly add up to lost productivity on a massive scale. A clunky step in multi-factor authentication, for example, can clog support queues and slow down response times. These are risks that cascade across your business.

You flagged a concern: users stumbling when navigating multi-factor authentication, with the back button and multiple tabs causing confusion and errors.

Our response is simple and effective: navigation during 2-Step Verification now actively prevents missteps, eliminating common failure points and reducing friction. This means fewer lockouts, fewer tickets, and more focus for your team.

We also addressed the Web Portal’s compose and reply experience, swapping out the old text editor for a modern rich text engine including, new clipboard, full font choice, and better control for message composition. This isn’t just polish. It ensures your users can present themselves professionally and consistently without leaving our secure environment.

Security and Simplicity: Not Mutually Exclusive

For any enterprise, robust security is table stakes. But complexity shouldn’t be. You want tight controls, but also seamless experience and minimal effort for your admins.

That’s why we’ve delivered OpenID Connect SSO for Admins in this release. You can now integrate with your existing identity provider whether that’s Microsoft, Google, or another OIDC-compliant system to manage administrative access. That gives you unified access control, removes password clutter, enables group-based policies, and strengthens your audit posture saving time and reducing compliance headaches.

API security gets a step up, too: any REST call now respects your IP allowlist, just like the rest of our platform.

S/MIME and PGP: Real Verification, Real Confidence

We know from speaking with customers that message authenticity and certificate integrity aren’t theoretical they’re daily concerns. There’s a common need for proof that inbound emails haven’t been tampered with and that the right person really signed them. With our latest signature verification enhancements, you now get visibility on four key criteria: message integrity, sender authenticity, valid certificate, and trusted certificate status.

Configurable reporting including subject tags, headers, or a simple HTML attachment gives you the choice to surface exactly the right information for your teams. This flexibility keeps recipients focused on business, not troubleshooting cryptic email attachments.

Too, you asked for less confusion around signatures in internal email: so we enabled automatic stripping of signature attachments for staff members, preventing accidental certificate harvesting and unnecessary questions to IT.

Security must be proactive. That’s why inbound decrypted S/MIME and PGP messages now have all HTML removed by default. This neutralises potential embedded threats, quietly protecting your people and your infrastructure.

Keeping Our Promises Together

These updates are not simply iterative improvements. They are the direct product of the trust and transparency our customers afford us. The result is unmistakable: less friction, less risk, more control, and critically more time for your teams to focus on their mission, not managing our product.

• When admins needed streamlined access, we brought in OIDC SSO.
• When assurance on signatures mattered, we delivered deep verification options.
• When users hit walls in authentication flows, we re-tooled navigation.

That’s the Echoworx approach; responsive, systematic, and grounded in partnership. Every item on our roadmap, every code commit, every release, moves us toward a platform that empowers you to act with confidence. We will continue to listen, iterate, and drive progress alongside those who demand the very best.