M.Tech! Your Preferred i-Security Partner

Company Overview

A global security software company, PGP Corporation is the leader in email and data encryption. During the past 10 years, PGP® technology has earned a reputation for innovative, standards-based, trusted solutions. PGP solutions are used by more than 80,000 enterprises, businesses, and governments worldwide, including 95 percent of the Fortune® 100, 75 percent of the Fortune® Global 100, 87 percent of Germany's DAX Index, and 51 percent of the FTSE 100 Index. Customers depend on PGP solutions as part of a regulatory and audit compliance solution, to protect confidential information, secure customer data, and safeguard companies’ brands and reputations.

The unique PGP® Encryption Platform is the cornerstone of PGP product offerings. The PGP Encryption Platform provides a single, leveraged, extensible architecture that reduces IT operational costs and eliminates the duplicative tasks, systems, training, and support issues that plague other approaches. Unlike point solutions that address a single threat or cobbled-together product suites that lack integration, the PGP Encryption Platform delivers an integrated encryption framework across the broadest range of encryption applications. The PGP Encryption Platform is deployed with the first PGP application installed to secure email, laptops, desktops, instant messaging, PDA, IM, network storage, FTP and bulk data transfers, or backups, enabling organizations to reap best-in-class encryption in phases or as business requirements emerge and evolve.

PGP products are designed to be both user and network-friendly. They have earned a reputation for excellence based on their high technical standards and the practical experience of long-term users. PGP Corporation is committed to standards-based, non-proprietary technologies, ensuring wide compatibility among deployments. In addition, PGP Corporation is the only commercial security vendor to publish product source code for peer review.

Product Overview

PGP Whole Disk Encryption

Comprehensive disk encryption for securing all files on desktops, laptops, or removable media
Mobile computers are quickly emerging as the industry standard for increasing user productivity and efficiency. The portable nature of these devices increases the possibility of loss or theft. Without strong data protection, sensitive data is at risk from corporate espionage, accidental loss, or casual theft. Sensitive data landing in the wrong hands can result in significant financial loss, legal ramifications, and brand damage.

For use by individual professionals or within the enterprise environment, PGP Whole Disk Encryption provides comprehensive, non-stop disk encryption, enabling quick, cost-effective protection for data on PCs, laptops, and removable media. The encrypted data is continuously safeguarded from unauthorized access, providing strong security for intellectual property, customer and partner data, and corporate brand equity.

Full Disk Protection
PGP Whole Disk Encryption locks down the entire contents of a laptop, desktop, external drive, or USB flash drive, including boot sectors, system, and swap files. The encryption is transparent to the user, automatically protecting data.

PGP Encryption Platform–Enabled
The PGP Encryption Platform provides a strategic enterprise encryption framework for shared user management, policy, and provisioning automated across multiple, integrated encryption applications. As a PGP Encryption Platform–enabled application, PGP Whole Disk Encryption leverages PGP Universal Server users, keys, and configurations, expediting deployment and policy enforcement. PGP Whole Disk Encryption can be used in combination with other PGP encryption solutions to provide multiple layers of security.

The PGP Encryption Platform: The Enterprise Encryption Architecture

Increased data accountability and increasing IT complexity require a new approach to securing data. Customers, business partners, and regulatory bodies are requesting higher levels of security for sensitive information. The PGP Encryption Platform reduces the complexities of protecting business data by enabling organizations to deploy and manage multiple encryption applications cost-effectively from a single management console. Deployed with the first encryption application, the PGP Encryption Platform makes installing a separate or additional infrastructure unnecessary when the organization needs other encryption applications.
http://www.pgp.com/images/Platform_Diagram_large.gif

The PGP Encryption Platform provides a strategic enterprise encryption framework for shared user and key management, policy, and provisioning automated across multiple, integrated encryption applications. Integrated PGP Corporation and third-party encryption applications enable organizations to deploy automated encryption as needed with the data security functions required to solve the business requirement. This data-centric approach protects data in motion and in transit anywhere, anytime.

Enabling Proactive Encryption Strategies
Businesses worldwide are increasingly dependent on IT to accelerate growth and profitability. At the same time, enterprises must address evolving compliance requirements, securing intellectual property globally, and protecting brand equity in an era of costly, embarrassing data security breaches. The PGP Encryption Platform enables organizations to address immediate needs and continue proactively deploying encryption applications without burdening administrators with multiple interfaces or end users with new training requirements. This approach enables IT to develop a proactive encryption strategy to mitigate risks before they affect operations or threaten the corporate brand and reputation.

First Application Delivers the Platform
The PGP Encryption Platform provides automated encryption services to a growing set of integrated applications. Deploying one enterprise encryption application delivers the PGP Encryption Platform, allowing organizations to quickly deploy new applications, as needed. For example, an organization could deploy email encryption with PGP Universal Gateway Email first. Then, it might deploy PGP Whole Disk Encryption clients to all laptop users and subsequently add PGP NetShare end-to-end storage encryption for the engineering, HR, and sales teams. The entire deployment is managed from a single administrative console using centralized policy and configuration.

Accelerating Deployment, Reducing Operational Costs
As organizations continue to deploy encryption applications, the PGP Encryption Platform removes the need for additional administration, deployment, policy, and provisioning systems. Instead of configuring and maintaining different systems, administrators can now focus on solving important business needs. Unified user management and policy enforced consistently across applications allows organizations to address initial and subsequent threats while reducing operational costs by removing the need for redundant resources.

More than Just a Suite
The PGP Encryption Platform and integrated applications differ from other encryption approaches, including suites or sets of applications. Unlike the PGP Encryption Platform, application suites lack integrated user management, policy, and other services. Suites require administrators to learn and manage multiple, different administrative consoles, leading to concerns about compliance achievement and risk mitigation. Application suites also increase acquisition costs by requiring multiple add-ons and management applications to be licensed to achieve functionality similar to that of an integrated platform.

PGP Encryption Platform: Enterprise Benefits

Lowers Operational Costs
The PGP Encryption Platform removes the need for operating multiple, disparate management systems for deploying, managing, and supporting one or more encryption applications. As the need for encryption continues to grow, administrators could be faced with the need to learn, manage, and support multiple administrative consoles from one or more vendors.

The PGP Encryption Platform reduces operational costs by:

Providing a framework for automated, central management of multiple encryption applications
Eliminating the need for multiple training sessions, accessing multiple consoles, setting differing policies through different interfaces, and updating each system
Enabling administrators to focus on critical tasks

Accelerates Time to Deploy Encryption Applications
Deployed with the first PGP Universal Server–managed encryption application installed, the PGP Encryption Platform significantly reduces the time needed to deploy and manage multiple encryption applications:

Eliminates the need to install duplicate software and hardware
Eliminates the need for duplicate configuration and installation processes when installing subsequent encryption applications

PGP Encryption Platform: Architecture Features

New: Windows Vista Support
The latest versions of all PGP Encryption Platform-enabled applications run on all editions of Microsoft's latest Windows operating system to ensure broad coverage across the most popular enterprise operating systems.

Transparent & Automated Operations
From PGP Universal Server to managed encryption applications, the PGP Encryption Platform architecture is designed to automate management and policy enforcement, enabling transparent operation for both end users and administrators.

Consistent Policy Enforcement
Key to the PGP Encryption Platform architecture is the ability to share encryption policies across users and applications. PGP Encryption Platform–enabled applications consistently apply and enforce policy, eliminating the need for administrators to manage different interfaces for users, keys, and policy management and reducing the risk of inconsistent policy configuration and enforcement.

Extensible Framework
The PGP Encryption Platform provides standards-based interfaces for third-party developers to leverage user and key management, shared policy, automated operations, and logging and reporting. Third-party developers such as Research In Motion® (RIM®) have already developed PGP Encryption Platform–enabled applications. The RIM-developed PGP Support Package for BlackBerry® uses the same keys, policies, and configuration as other PGP Encryption Platform–enabled email applications.

Enterprise Integration
Designed to leverage existing infrastructure investments, the PGP Encryption Platform architecture integrates with leading third-party enterprise solutions, including directory services, PKIs, email hygiene and outbound content compliance solutions, and systems management tools.

PGP Encryption Platform: Technical Specifications

Standards-Based Interfaces

HTTPS
LDAP/S
SOAPS

Directory Integration

Microsoft Active Directory
Lotus Notes/Domino Directory
PGP Global Directory

Key & Certificate Management

OpenPGP
X.509 v3

Automated Functions

User management
Key management
Provisioning
Policy management
Logging
Monitoring
Reporting

Managed Encryption Applications

PGP Universal Gateway Email
PGP Desktop Email
PGP Desktop Professional
PGP Desktop Storage
PGP Desktop Enterprise
PGP NetShare
PGP Whole Disk Encryption
PGP Support Package for BlackBerry®

PGP Universal Server: Centrally manage and deploy multiple encryption applications

PGP Universal Server enables organizations to control deployment, automate user and key management, enforce policy, and centralize reporting for one or more encryption applications:

Start with a single encryption application, growing a deployment across the enterprise and out to customers and partners
Scale by adding applications and management resources, as needed
Integrate with existing enterprise infrastructure and standards
Deploy solutions for today’s encryption requirements and address future needs with a single encryption management system

Automating Deployment & Ongoing Management
Based on policy, PGP Universal Server automates deployment, provisioning, key management, and policy enforcement. PGP Universal Server allows administrators to focus on familiar tasks:

Establishing groups
Defining membership based on enterprise directory systems
Quickly assigning policy and configuration

Reducing administrative burden and helping to ensure policies are enforced consistently across multiple applications, PGP Universal Server automates:

Creation of user accounts
Management of user keys
Delivery of policy updates to applications
Installation of software updates
Logging and monitoring

PGP Universal Server: Enterprise Benefits

Lower Operational Costs
PGP Universal Server allows administrations to configure encryption policies through a single interface so they can focus on other critical tasks, reducing operational costs.

Eliminates the need for multiple training sessions, accessing multiple consoles, setting different policies through different interfaces, and applying updates to each managed client

Address Risk Exposure & Inconsistent Policies
With a common and consistent interface, PGP Universal Server allows administrators to define a tailored set of encryption policies for all encryption applications. This approach reduces the often overlooked risk of inadequate and inconsistent policies by:

Reducing the potential for misconfiguration
Centralizing control and management
Providing consistent policy definitions and enforcement

Tackle Evolving Audit Requirements
As audit requirements continue to evolve, PGP Universal Server enables administrators to stay focused on additional projects while delivering the flexibility and configurations needed. PGP Universal Server’s centrally defined and enforced policies, logging, and reporting reduce the time needed to validate and audit multiple encryption applications.

Build for Tomorrow’s Needs
As the foundation of the PGP Encryption Platform architecture, PGP Universal Server provides an extensible framework that allows businesses to:

Proactively plan for the services needed tomorrow and adapt as required

Use integrated applications from leading third-party software vendors such as the PGP Support Package for BlackBerry® developed by Research In Motion® (RIM®)

PGP Universal Server: Features

Enhanced Encryption Policies
With PGP Universal Server, administrators can define polices for multiple encryption applications, including gateway email, full disk encryption, removable media, and network file encryption.

Tailor email encryption policies based on content, delivery method, sender and/or recipient, and other message details.
Exercise extensive control over mail flow and encryption handling using enhanced Mail Policy.
Assign multiple sets of policies to different groups, allowing organizations to tailor encryption policies to meet their audit, data security, and organizational requirements.

Single Web-Based Administrative Console
PGP Universal Server’s unified, Web-based administrative interface provides:

Access to user, key, and policy management in addition to system monitoring and reporting
Role-based administration, enabling organizations to distribute administration functions while maintaining access polices

Enterprise Integration
PGP Universal Server can optionally leverage investments made in systems such as enterprise directories, PKIs, email hygiene and outbound content compliance solutions, and systems management tools.

Broad standards support and robust integration help PGP Universal Server accelerate deployment time.

Clustering for Business Continuity
Multiple PGP Universal Servers can be clustered to make administration, enforcement, logging, and policy updates available, without interruption, throughout the enterprise and out to customers and partners.

Logging, Monitoring, & Reporting
Encryption events are logged with PGP Universal Server and made accessible through the Web-based administrative console. System monitoring is accessible via the Web administrative interface and SNMP.

Managed Client Deployment
For managed client encryption applications, PGP Universal Server supports the generation of client installers directly from the Web-based administrative console:

Microsoft Windows and Apple Mac OS X client installers
Generates MSI distributions compatible with systems management tools such as Microsoft SMS

Supports Long-Term Data Access & Retention
PGP Universal Server provides optional corporate access to encrypted data across managed applications.

Patented PGP Additional Decryption Key (ADK) technology enables corporate access (according to policy) to encrypted files, emails, and network file servers when required by regulatory mandates.

For PGP Whole Disk Encryption, users and administrators can quickly regain access to a system with a one-time-use passphrase.

PGP Universal Server: Technical Specifications

Technical Specifications

Supported Web Browsers for Administration

Apple Safari
Microsoft Internet Explorer
Mozilla Firefox

Standards-Based Interfaces

HTTPS
LDAP/S
SOAPS

Directory Integration

Microsoft Active Directory 2000
Microsoft Active Directory 2003
Lotus Notes/Domino Directory 5.0.11, 6.5, & 7.0
OpenLDAP 2.3
PGP Global Directory

Key & Certificate Management

OpenPGP
X.509 v3

Managed Encryption Applications

PGP Universal Gateway Email
PGP Desktop Email
PGP Desktop Professional
PGP Desktop Storage
PGP Desktop Enterprise
PGP NetShare
PGP Whole Disk Encryption
PGP Support Package for BlackBerry®

Minimum System Requirements – Supported Virtualization & Hardware

Supported Virtualization

VMware ESX Server 3.0

More information on VMware ESX Server hardware compatibility is available in the "Systems Compatibility Guide for ESX Server 3.x" from VMware [external link to VMware.com]

Supported Server Hardware

Dell OptiPlex 740n

AMD Athlon 64 X2 5000+
1GB RAM
DVD-ROM
80GB SATA HD

Dell PowerEdge 860

Dual Core Xeon 3060
1GB RAM
DVD-ROM
80GB SATA HD

Dell PowerEdge 1950

Dual Intel Xeon 5130
2GB RAM
DVD-ROM
Dual 146 GB 10K SAS HD
PERC5/i RAID

Dell PowerEdge 2950

Dual Intel Xeon 5130
4GB RAM
DVD-ROM
Dual 146 GB 15K SAS HD
PERC5/i RAID
Redundant Power Supply

IBM eServer xSeries 346

Dual 2.8 GHz Dual Core Intel Xeon
2GB RAM
Dual 73GB 15K Ultra 320 SCSI HD
ServeRAID-7k

Sun Fire X4100 Server

Dual AMD Opteron 275 Dual Core
4GB RAM
DVD-ROM
Dual 73GB 10K SAS
Sun RAID

HP ProLiant DL385

Dual AMD Opteron 275 Dual Core
4GB RAM
DVD-ROM
Dual 73 GB 10K SAS HD
Smart Array 642 RAID
Redundant Power Supply

NEC Express5800 120Ri-2

3GHz DualCore Intel Xeon 5160 x 2
2 GB RAM
DVD-ROM
Disk Array Controller (Internal SAS HDD) 146GB HDD x 3 (RAID5)

PGP Universal Gateway Email: Secure email communications without client software

PGP Universal Gateway Email provides centrally managed, standards-based email encryption to secure email communication with customers and partners. Based on highly configurable encryption rules, emails are secured as they enter and leave the enterprise network. PGP Universal Gateway Email extends enterprise email polices to recipients without the need for special training or software.

Automatically Enforce Policy
As part of an enterprise messaging architecture, PGP Universal Gateway Email:

Inspects emails entering and leaving the organization
Applies centrally defined email encryption policies
Performs encryption automatically without encumbering end users

Adapt to Evolving Audit & Regulatory Requirements
As intellectual property protection, audit, and compliance requirements continue to evolve, PGP Universal Gateway Email allows administrators to quickly and easily implement new policies to control mail flow and encryption.

Policies can be deployed across groups, mail applications, senders, and recipients or narrowly defined to strict specifications.
Messages with internal and external recipients, including internal Microsoft Exchange distribution lists, are processed seamlessly, according to policy.

Extend Messaging Policy Beyond the Enterprise
PGP Universal Gateway Email automatically adapts to recipient messaging capabilities, delivering messages according to policy. For recipients without encryption software:

PGP Universal Web Messenger delivers secured email through a Web email interface.
If policy requires messages to be secured at the desktop for partners without existing encryption software, PGP Universal Satellite can be quickly installed and encrypts email to and from the recipient, based on policy.
Messages sent to recipients with mixed client encryption capabilities are individually processed and secured according to policy.
User setup, account creation, and key management are automated and transparent to end users.

PGP Encryption Platform–Enabled
The PGP Encryption Platform provides a strategic enterprise encryption framework for shared user management, policies, and provisioning automated across multiple, integrated encryption applications. As a PGP Encryption Platform–enabled application, PGP Universal Gateway Email leverages existing PGP Universal Server users, keys, and configurations, expediting deployment and policy enforcement. PGP Universal Gateway Email can be used in combination with new or existing PGP Desktop Email deployments to provide multiple layers of email security.

PGP Universal Gateway Email: Benefits

Enterprise Benefits

Secure Customer Data & Intellectual Property
Using PGP Universal Gateway Email, organizations can immediately begin to protect the confidentiality of email as it enters and leaves the enterprise network.

Encrypt messages based on content, sender, recipient, and other message details that identify confidential information.
Integrate with third-party email hygiene and outbound content compliance solutions, leveraging existing policies and systems.

Enhance Data Security without Impacting Productivity
The potential impact of deploying a new application is an important consideration. PGP Universal Gateway Email secures messages according to policy without changing internal end-user behavior, workflow, or productivity.

Recipients outside the organization can receive email using their existing email and Web browser applications.
Transparent, automated operation eliminates any impact on senders and recipients that could result in increased help desk calls from both inside and outside the organization.

Leverage Existing Compliance Investments
To meet the growing set of audit and compliance requirements for messaging, many organizations have already deployed and configured outbound content compliance solutions. Leveraging existing investments, PGP Universal Gateway Email integrates with leading outbound content compliance solutions to act on existing policy and processes, securing email entering and leaving the enterprise network.

Business Partner Benefits

Enhance Trust & Privacy without New Costs or Complexity
For those partners that have already made email security investments, PGP Universal Gateway Email:

Supports the two globally adopted email encryption standards, OpenPGP and S/MIME
Does not change end-user workflow or productivity
Does not require customers or partners to invest in new software, hardware, or training

PGP Universal Gateway Email: Features

Enhanced Encryption Policies
Using PGP Universal Server’s enhanced Mail Policy engine, email encryption policies can be tailored based on content, delivery method, sender and/or recipient, and other message details.

Enhanced Mail Policy enables administrators to exercise extensive control over mail flow and encryption handling.
Policies defined for PGP Universal Gateway Email can be shared consistently down to the desktop for use with managed PGP Desktop Email clients.

Enhanced Clustering for Business Continuity
Multiple PGP Universal Servers can be clustered to make PGP Universal Web Messenger policy updates and messages available, without interruption, throughout the enterprise and out to customers and partners.

Email Archival Integration
Because of the growing demand for quick access to records for discovery purposes, businesses are deploying email archiving.

PGP Universal Gateway Email integrates with leading email archival solutions using SMTP.
Encrypted or decrypted messages can be archived.

PGP Universal Web Messenger
To ensure messages can be delivered securely even to recipients without existing email encryption software, PGP Universal Gateway Email offers the policy option to send and receive secure messages using a Web browser.

Recipients establish a secure SSL/TLS session to send and receive email with PGP Universal Web Messenger.
Mail Policy is applied for all messages sent using PGP Universal Web Messenger.

PGP Universal Satellite
For email users that prefer to use their existing mail client or when policy dictates desktop email encryption, PGP Universal Satellite can be deployed to:

Encrypt email using two-way policy enforcement, extending security to business partners.
Enforce Mail Policy for all messages sent to and from the PGP Universal Gateway Email domain.
Secure email without changing partner workflow or producing and incurring additional help desk load.

Optional: Symantec AntiVirus™ Scan Engine
PGP Universal Gateway Email offers the option to add Symantec AntiVirus Scan Engine as an integrated component. This antivirus technology provides high-performance, scalable, reliable virus protection for email and documents passing through a PGP Universal Gateway Email server.

PGP Universal Gateway Email: Technical Specifications

Technical Specifications

Messaging Security Standards

PGP/MIME (RFC 3156)
OpenPGP (RFC 2440)
S/MIME v3 (RFC 2633)

Key & Certificate Management

OpenPGP
X.509 v3

Supported Messaging Protocols

POP/POPS
IMAP/IMAPS
SMTP/SMTPS
STARTTLS for POP/IMAP/SMTP

Supported Email Servers

Microsoft Exchange Server 2007
Microsoft Exchange Server 2003 SP2
Microsoft Exchange Server 2000 SP3
Lotus Domino Server 5.0.11, 6.5, & 7.0

Supported Web Browsers – PGP Universal Web Messenger

Apple Safari
Microsoft Internet Explorer
Mozilla Firefox

System Requirements – PGP Universal Satellite

Microsoft Windows Vista (all 32-bit editions)
Microsoft Windows Professional SP1 & SP2
Microsoft Windows Server 2003 SP1
Microsoft Windows 2000 Professional SP4
Apple Mac OS X 10.4.x (Universal binary)

Minimum System Requirements – Supported Virtualization & Hardware

Required PGP Software

PGP Universal Server 2.6

Supported Virtualization

VMware ESX Server 3.0

More information on VMware ESX Server hardware compatibility is available in the Systems Compatibility Guide for ESX Server 3.x from VMware [external link to VMware.com]

Supported Server Hardware

Dell OptiPlex 740n

AMD Athlon 64 X2 5000+
1GB RAM
DVD-ROM
80GB SATA HD

Dell PowerEdge 860

Dual Core Xeon 3060
1GB RAM
DVD-ROM
80GB SATA HD

Dell PowerEdge 1950

Dual Intel Xeon 5130
2GB RAM
DVD-ROM
Dual 146 GB 10K SAS HD
PERC5/i RAID

Dell PowerEdge 2950

Dual Intel Xeon 5130
4GB RAM
DVD-ROM
Dual 146 GB 15K SAS HD
PERC5/i RAID
Redundant Power Supply

IBM eServer xSeries 346

Dual 2.8 GHz Dual Core Intel Xeon
2GB RAM
Dual 73GB 15K Ultra 320 SCSI HD
ServeRAID-7k

Sun Fire X4100 Server

Dual AMD Opteron 275 Dual Core
4GB RAM
DVD-ROM
Dual 73GB 10K SAS
Sun RAID

HP ProLiant DL385

Dual AMD Opteron 275 Dual Core
4GB RAM
DVD-ROM
Dual 73 GB 10K SAS HD
Smart Array 642 RAID
Redundant Power Supply

NEC Express5800 120Ri-2

3GHz DualCore Intel Xeon 5160 x 2
2 GB RAM
DVD-ROM
Disk Array Controller (Internal SAS HDD) 146GB HDD x 3 (RAID5)

PGP NetShare: Network file encryption for collaborating teams

PGP NetShare enables teams to securely share documents on file servers by automatically and transparently encrypting the files for fine-grained group access. This approach ensures that only authorized users can read or modify files, fulfilling partner and regulatory requirements for information partitioning and security.

Improved Access Controls for Distributed Sharing
Today, customers, business partners, and regulators require stronger, more verifiable measures for protecting sensitive information. At the same time, data access is more distributed, and suppliers and other partners have become deeply integrated into many organizations’ business processes and IT infrastructure. Continuous sharing of critical data internally and externally creates new security challenges for controlling access to data on networked storage servers that traditional file server access controls alone cannot adequately address. Without strong data protection, enterprises may be exposed to significant financial and intellectual property loss, legal penalties, and brand damage.

PGP NetShare extends file server access controls with strong end-to-end encryption, allowing content owners or security administrators to specify access rights for specific groups or individuals. With PGP NetShare, organizations can protect their intellectual property and other sensitive information as required by partner and regulatory mandates for information security and privacy.

Persistent File Encryption on Network Servers
With PGP NetShare, authorized users can save and share files on file servers and use all applications as they currently do while benefiting from the comprehensive protection offered by PGP encryption. Content such as documents, spreadsheets, presentations, video, audio, and Web materials is automatically encrypted when saved to a PGP NetShare–protected folder. The content remains encrypted when transferred to and stored on local desktops. Information remains protected at all times without any specific user action.

PGP Encryption Platform–Enabled
The PGP Encryption Platform provides a strategic enterprise encryption framework for shared user management, policy, and provisioning automated across multiple, integrated encryption applications. As a PGP Encryption Platform–enabled application, PGP NetShare leverages PGP Universal Server users, keys, and configurations, expediting deployment and policy enforcement. PGP NetShare can be used in combination with other PGP encryption solutions to provide multiple layers of security.

PGP NetShare: Benefits

Enterprise Benefits

Easy to Use

End users use and protect their shared information without changing their work habits.
No user training is required.

Simple Administration, Unified Infrastructure

PGP Universal Server’s unified, Web-enabled management console provides easy access to administer and manage PGP NetShare throughout an organization.
Enterprise-class tools included for user management, IT configuration, rapid deployment, and data recovery.
Security administrators can specify and centrally enforce granular security policies based on requirements.
Role-based administrative access enables administrative separation of duties.

Enterprise Integration

No changes required to existing storage or networking infrastructure.
Leverage existing LDAP or Microsoft Active Directory services to centrally assign security policies for user groups.
Add PGP applications for email or whole disk protection as needed without costly duplication of infrastructure.
All PGP Encryption Platform–enabled applications share a common key and policy management infrastructure.

Workgroup Benefits

Flexible, Scalable Security

Cost-effectively scales from selective data protection for initial teams to enterprise-wide deployment as organizational requirements change.
Data owners can manage access controls for their information or delegate access administration to a security manager.
Encryption and decryption is performed transparently on the client, allowing PGP NetShare to scale to include thousands of users without degrading system, server, or network performance.

PGP NetShare: Features

Standard Features

The following features are included with the product in both centrally managed and unmanaged installations.

New: Windows Vista Support
PGP NetShare now supports all 32-bit editions of Microsoft’s new Windows Vista operating system

Transparent to Users
Once PGP NetShare folders are created, users create, save, and share documents as before. No change in user behavior or training is needed. Users simply click on a .doc, .xls, or .ppt file.

Encryption that Follows the File
Files remain encrypted from the desktop, across the network, and when stored on the server. Encryption and access rights remain with files on the server, when downloaded or copied to local desktops, and when backed up or archived.

Directory Access Control Rights
PGP NetShare files and folders have associated access controls. Files are automatically encrypted according to policy, so only authorized users can open files. Unauthorized users who access these files see only ciphertext.

Role Separation
IT administrators can access PGP NetShare–protected files and folders for management and backup processes without requiring content viewing privileges. With PGP NetShare, personnel who are not explicitly given access rights cannot view documents, including offline copies.

Support for All Common Document Formats
PGP NetShare supports all common digital formats—document, spreadsheet, presentation, Web, video, and audio—without modification.

Assured Data Access
Patented PGP Additional Decryption Key (ADK) technology ensures corporate access to encrypted data (according to policy) in the event a key is lost or when required by regulatory mandates.

Multiple Ways to Share Data
Users can create storage-independent encrypted containers for transport and sharing of specific files using PGP Virtual Disk, PGP Zip, and PGP Self-Decrypting Archive.

PGP Virtual Disk – Create personal volumes whose contents are encrypted, providing a secured storage space.
PGP Zip – Single-step creation of secure, encrypted, compressed archives.
PGP Self-Decrypting Archive – Executable archives that can be decrypted without PGP® Desktop, making them it ideal for securing files intended for non-PGP users. (Windows only)

Secure File Deletion

PGP Shredder & PGP Wipe – Allow users to securely and permanently eliminate all traces of files from a disk.

Centrally Managed Features

The following features are available when the product is centrally managed with PGP Universal Server.

Centrally Enforced Security Policy

Leverages an existing LDAP or Microsoft Active Directory to automatically assign security policies based on user group attributes.
Enables creation and modification of PGP NetShare–protected resources.

Event Logging

Comprehensive logs record all administrative operations for auditing and security best practices.

PGP Desktop Email: Automatic email encryption for desktops and laptops

PGP Desktop Email provides enterprises with an automated, transparent set of encryption solutions to consistently secure confidential information in email. With PGP Desktop Email, organizations can protect the business and help meet partner and regulatory mandates for information security and privacy.

Powerful, End-to-End Data Security
PGP Desktop Email delivers all the encryption functionality necessary for protecting an organization’s email communications in a single easy-to-use and easy-to-manage solution. Secure email communications from the sender’s email client to the recipient’s—and all points in between—automatically, using centrally defined, policy-based encryption. PGP Desktop Email supports major email security standards and will interoperate seamlessly with most popular email security software solutions. For recipients without email security, senders can encrypt files using PGP Zip and send the protected information as a standard email attachment.

PGP Encryption Platform–Enabled
The PGP Encryption Platform provides a strategic enterprise encryption framework for shared user management, policy, and provisioning automated across multiple, integrated encryption applications. As a PGP Encryption Platform–enabled application, PGP Desktop Email leverages existing PGP Universal Server policies, users, keys, and configurations, expediting deployment and policy enforcement. PGP Desktop Email can be used in combination with other PGP encryption solutions to provide multiple layers of security.

PGP Desktop Email: Benefits

Fully Automated Deployment & Management
PGP Desktop Email and PGP Universal Server’s management console provide the functionality to establish, enforce, and update email security policy in real time.

Interoperates with common email infrastructure products and protocols
Provides comprehensive information security without altering existing IT or business practices
Provides tools needed to quickly deploy PGP Desktop Email to end users
Enables silent push of custom configurations of PGP Desktop Email across organizations of any size using Windows MSI Installer

Easy, Automatic Operation
Once PGP Desktop Email is deployed, users simply go back to work. The software automatically encrypts, decrypts, and digitally signs and verifies messages according to policy, ensuring users never forget to secure email and attached data.

Enforced Security Policies, not Individual Decisions
Email policies can be set based on sender, individual recipient, recipient domain, key word, or content so confidential messages are secured automatically and consistently without requiring changes in user behavior. Policy definitions can be set and audited using PGP Universal Server’s management console.

Reduced Operational Costs, Accelerated Deployment
By reducing the need to learn and use multiple management interfaces and the time needed to deploy, manage, and maintain multiple management consoles and servers, PGP Desktop Email can be deployed quickly and maintained over time, reducing operational costs.

PGP Desktop Email: Features

Standard Features

The following features are included with PGP Desktop Email in both centrally managed and unmanaged installations.

New: Windows Vista Support
PGP Desktop Email now supports all 32-bit editions of Microsoft’s new Windows Vista operating system.

Self-Expanding PGP Virtual Disks
Self-expanding PGP Virtual Disks automatically grow to accommodate increases in data size, eliminating initial space allocation constraints.

Automatic Messaging Security
PGP Desktop Email automatically encrypts, decrypts, digitally signs, and verifies email messages according to individual or centrally managed policies. Secure instant messaging provides automatic secure sessions between AOL Instant Messenger (AIM) users.

Centralized Management, Deployment, & Policy
Automate provisioning, user and key management, and policy enforcement across email, disk, and network file encryption using PGP Universal Server's management console. Role-based administrative access enables administrative separation of duties.

Multiple Authentication Options
PGP Desktop Email can be secured using a PGP key or X.509 certificate and supports preexisting key infrastructures. Smart card/token support enables multi-factor authentication of administrators and users.

Multiple Ways to Share Data
Users can create storage-independent encrypted containers for transport and sharing of specific files using PGP Virtual Disk, PGP Zip, and PGP Self-Decrypting Archive.

PGP Virtual Disk – Enables users to create encrypted personal volumes, providing a unique, secured storage space with an added layer of data security.
PGP Zip – Enables single-step creation of secure, encrypted, compressed archives.
PGP Self-Decrypting Archives – Executable archives that can be decrypted without PGP Desktop, making them ideal for securing files intended for non-PGP users. (Windows only)

Secure File Deletion

PGP Shredder & PGP Wipe – Allow users to securely and permanently eliminate all traces of files from a disk.

Centrally Managed Features

The following features are available when PGP Desktop Email is centrally managed with PGP Universal Server.

Centrally Enforced Security Policy

Leverages an existing LDAP or Microsoft Active Directory to automatically assign security policies based on user group attributes
Mail Policy enforces email encryption and digital signature polices

Event Logging

Comprehensive logs record all administrative operations for auditing and security best practices.

PGP Deskop Home: Easy-to-use encryption to protect valuable information

PGP Desktop Home is an easy-to-use desktop encryption application that secures individuals’ most valuable and confidential information. PGP Desktop Home uses the same trusted, mature PGP encryption technology that has been proven effective by millions of users, security experts, and organizations worldwide to:

Automatically encrypt email with the installed desktop email application without pressing any special buttons
Lock down files in automatically expanding virtual drives or easily shared archives
Secure AOL Instant Messenger (AIM) sessions between PGP Desktop users

Protect Email Privacy
Automatically detecting POP and IMAP email accounts, PGP Desktop Home encrypts emails without installing special plugins or requiring extra mouse clicks. Use the default configuration to encrypt emails or customize encryption rules, including rules to encrypt based on recipient, subject header, and message content. All emails can be digitally signed, validating the integrity and source of messages for recipients. Background notification windows indicate whenever a message is encrypted, decrypted, or digitally signed.

Lock Down Files
With gigabytes of storage, desktop and laptop computers contain a complete history of banking receipts, tax returns, family information, and other private data. System theft and malware are just some of ways personal information can be exposed and used by identity thieves. PGP Desktop Home provides users two options to encrypt files for everyday use or encrypt and compress for sharing or backup:

PGP Virtual Disk – Used just like a removable disk drive, PGP Virtual Disks store files and folders in a single file, automatically encrypting and decrypting data. PGP Virtual Disks expand automatically as needed so files can be added without additional steps or concerns over the initial volume size configured. When not in use, PGP Virtual Disks can be “closed” to secure data even when system power is on.
PGP Zip – For storing backups or sharing files, PGP Zip stores files and folders in a single, compressed file. If files need to be shared with others that do not have PGP Desktop, users can create a PGP Self-Decrypting Archive (SDA) that automatically executes and decrypts files after successful authentication.

Keep Instant Messages Confidential
Instant messages travel across the Internet and through service providers. PGP Desktop Home allows AIM chats to remain private between PGP Desktop users. Encryption is performed automatically in the background with no change to the users’ chat experience or application performance

PGP Desktop Home: Benefits

Easy, Automatic Setup
After installation, PGP Desktop Home is already protecting privacy and confidential data with automated encryption.

Email accounts are automatically detected, and PGP Desktop Home performs setup in the background to begin immediately sending and receiving encrypted email.
Keys generated for encryption can be optionally posted automatically to the PGP Global Directory, a PGP service providing a single repository of current, verified keys for PGP users worldwide.
PGP Virtual Disks are automatically formatted and expand when addition storage space is required.
AIM sessions are automatically encrypted between PGP Desktop users with no additional setup.

Always-On Security
PGP Desktop Home operates in the background, notifying users each time an encryption operation is performed.

Without plugins or special buttons, PGP Desktop Home encrypts and decrypts emails when sent and received.
User-configurable rules define when and how PGP Desktop Home performs encryption and digital signatures.
PGP Virtual Disk volumes are accessed just like any other disk drive, with encryption and decryption performed on-the-fly in the background.
PGP Desktop users with IM encryption are automatically identified in buddy lists; starting a chat session begins encryption, with no extra steps needed.

Ready for Work
PGP encryption solutions are used by more than 30,000 organizations worldwide to secure corporate and business partner communications, files, and systems. PGP Desktop Home is interoperable with PGP enterprise email and file encryption solutions, including PGP Desktop Professional, PGP Storage, PGP Desktop Enterprise, and PGP Universal Gateway Email.

PGP Desktop Home: Features

New: Windows Vista Support
PGP Desktop Home now supports all 32-bit editions of Microsoft’s new Windows Vista operating system.

Mac OS X Intel Support
Packaged as a Universal Binary, PGP Desktop Home supports new Apple Macintosh computers with Intel processors.

Self-Expanding PGP Virtual Disks
Self-expanding PGP Virtual Disks automatically expand to accommodate increases in data size, eliminating initial space allocation constraints.

Automatic Messaging Security
PGP Desktop Home automatically encrypts, decrypts, digitally signs, and verifies email messages according to configurable policies.

Automatic Key Search
PGP Desktop Home automatically finds keys associated with trusted email addresses and will automatically search PGP Universal Servers and the PGP Global Directory, a PGP service providing a single repository of current, verified keys for PGP users worldwide.

Multiple Ways to Share Data
PGP Desktop Home enables single-step creation of secure, encrypted archives that can contain single or multiple files, or even entire directories. Users can create storage-independent encrypted containers for transport and sharing of specific files using PGP Zip, PGP Virtual Disk, and PGP Self-Decrypting Archive.

PGP Virtual Disk – Enables users to create encrypted personal volumes, providing a unique, secured storage space with an added layer of data security.
PGP Zip – Enables single-step creation of secure, encrypted, compressed archives.
PGP Self-Decrypting Archives – Executables that can be decrypted without PGP Desktop, making them ideal for securing files intended for non-PGP users. (Windows only)

Secure File Deletion

PGP Shredder & PGP Wipe – Allow users to securely and permanently eliminate all traces of files from a disk.

Secure Instant Messaging (IM)
Secure instant messaging provides automatic, encrypted chat sessions between AOL Instant Messenger (AIM) users with PGP Desktop.

PGP Deskop Enterprise: Flexible email and storage encryption for distributed professionals

PGP Desktop Enterprise provides flexible, multi-layered encryption to consistently secure confidential data in email and in files sto red on local desktop or laptop systems using PGP Desktop Email and PGP Whole Disk Encryption, and for securely sharing files with selected colleagues using PGP NetShare. This approach ensures that only authorized users can access sensitive data, fulfilling partner and regulatory requirements for information partitioning and security.

PGP Desktop Email – Delivers all the encryption functionality necessary for protecting an organization’s email communications in a single easy-to-use and easy-to-manage solution. Secure email communications from the sender’s email client to the recipient’s—and all points in between—automatically, with either user- or centrally defined policy-based encryption.
PGP Whole Disk Encryption – Locks down the entire contents of a laptop, desktop, external drive, or USB flash drive, including boot sectors, system, and swap files. The encryption is transparent to the user, automatically protecting data while the system is in use without changing user behavior or workflow.
PGP NetShare – Extends access controls of file servers with strong end-to-end encryption, allowing content owners or security administrators to specify access rights for groups or individuals. Authorized users save and share files on file servers as before, and documents are automatically encrypted when saved to a PGP NetShare–protected folder.

PGP Encryption Platform–Enabled
The PGP Encryption Platform provides a strategic enterprise encryption framework for shared user management, policy, and provisioning automated across multiple, integrated encryption applications. As a PGP Encryption Platform–enabled application, PGP Desktop Enterprise leverages PGP Universal Server users, keys, and configurations, expediting deployment and policy enforcement. PGP Desktop Enterprise can be used in combination with other PGP encryption solutions to provide multiple layers of security.

PGP Desktop Enterprise: Benefits

Enterprise Benefits

Easy to Use

End users access and protect email, local, and shared information without changing their work habits.
Once deployed, encryption is automatic and transparent. Users simply go back to work; no user training is required.

Simple Administration, Unified Infrastructure

PGP Universal Server’s unified, Web-enabled management console provides easy access to administer and manage PGP Desktop Enterprise throughout an organization.
Enterprise-class tools included for user management, IT configuration, rapid deployment, and data recovery.
Security administrators can specify and centrally enforce granular security policies based on requirements, ensuring data is secured automatically and consistently.
Use of standard MSI software packages simplifies deployment of preconfigured clients, reducing deployment costs and accelerating application delivery time.

Enterprise Integration

Interoperates with common email and storage products and protocols without requiring changes to existing email, storage, or networking infrastructure.
Leverages existing LDAP or Microsoft Active Directory services to centrally assign security policies for user groups.

Workgroup Benefits

Flexible, Scalable Security

Cost-effectively scales from selective data protection to enterprise-wide deployment as organizational requirements change.
Data owners can manage access controls for shared information or delegate access administration to a security manager.
Encryption and decryption are performed transparently on the client, allowing PGP Desktop Enterprise to scale to include thousands of users without degrading system, server, or network performance.

PGP Desktop Enterprise: Features

Standard Features

The following features are included with PGP Desktop Enterprise in both centrally managed and unmanaged installations.

New: Windows Vista Support
PGP Desktop Enterprise now supports all 32-bit editions of Microsoft’s new Windows Vista operating system.

Policy-Driven Encryption of Removable Media
PGP Desktop Enterprise users managed by PGP Universal Server automatically apply encryption of removable media according to policy, ensuring consistent data protection for these easily lost devices.

Single Sign-On to Windows
Single sign-on for MS Windows provides password synchronization, enabling strong password security enforcement by leveraging the Windows domain password policies without replacing MS Windows' existing sign-on code.

Partition-Based Encryption
Partition-based encryption enables PGP Whole Disk Encryption to encrypt only designated disk partitions, providing added compatibility for systems with multiple operating systems or existing recovery partitions.

Self-Expanding PGP Virtual Disks
Self-expanding PGP Virtual Disks automatically grow to accommodate increases in data size, eliminating initial space allocation constraints.

Support for Mac OS X
Encryption for removable and non-boot disks enable cross-platform sharing of encrypted media.

Automatic Messaging Security
PGP Desktop Professional automatically encrypts, decrypts, digitally signs, and verifies email messages according to individual or centrally managed policies. Secure instant messaging (IM) provides automatic secure sessions between AOL Instant Messenger (AIM) users with PGP Desktop.

Directory Access Control Rights
PGP NetShare files and folders have associated access controls. Files are automatically encrypted according to policy, so only authorized users can open files. Unauthorized users who access these files see only ciphertext.

Role Separation
IT administrators can access PGP NetShare–protected files and folders for management and backup processes, without requiring content viewing privileges. With PGP NetShare, personnel who are not explicitly given access rights, cannot view documents, even offline copies.

Centralized Management, Deployment, & Policy
Automate provisioning, user and key management, and policy enforcement across email, disk, removable media, and network file encryption using PGP Universal Server's management console. Role-based administrative access enables administrative separation of duties.

Assured Data Access
Patented PGP Additional Decryption Key (ADK) technology ensures corporate access to encrypted data (according to policy) in the event a key is lost or when required by regulatory mandates.

Multiple Ways to Share Data
Users can create storage-independent encrypted containers for transport and sharing of specific files using PGP Virtual Disk, PGP Zip, and PGP Self-Decrypting Archive.

PGP Virtual Disk – Enables users to create encrypted personal volumes, providing a unique, secured storage space with an added layer of data security.
PGP Zip – Enables single-step creation of secure, encrypted, compressed archives.
PGP Self-Decrypting Archives – Executables that can be decrypted without PGP Desktop, making them ideal for securing files intended for non-PGP users. (Windows only)

Secure File Deletion

PGP Shredder & PGP Wipe – Allow users to securely and permanently eliminate all traces of files from a disk.

Centrally Managed Features

The following features are available when PGP Desktop Enterprise is centrally managed with PGP Universal Server.

Centrally Enforced Security Policy

Leverages an existing LDAP or Microsoft Active Directory to automatically assign security policies based on user group attributes.
Mail Policy enforces email encryption and digital signature polices.
Policy enforces disk and removable media encryption and prevents users from decrypting disks or uninstalling the software.
Enables creation and modification of PGP NetShare–protected resources.

Event Logging
Comprehensive logs record all administrative and disk operations for auditing and security best practices.

Recovery Pass-phrase

Automatic generation and central storage of unique one-time-use recovery pass-phrase enables remote assistance.
Automatically resets the recovery pass-phrase after each use, reducing administrative overhead.

PGP Desktop Professional: Comprehensive encryption for desktops and laptops

PGP Desktop Professional provides a comprehensive set of encryption applications to protect sensitive data in email, instant messages, and on disk or removable media. This data is at risk of compromise: email and instant messages can be intercepted or misdirected, laptops are easily lost, and PCs are often targets for theft. PGP Desktop Professional secures confidential information wherever it exists, protecting the business and helping meet partner and regulatory mandates for information security and privacy.

Disk, Volume, & File Protection
PGP Desktop Professional includes PGP Whole Disk Encryption to lock down the entire contents of a laptop, desktop, external drive, or USB flash drive, including boot sectors, system, and swap files. Pre-boot authentication is enforced and the always-on encryption is transparent to the user, automatically protecting data. Volume and file encryption provides an added layer of security to protect sensitive data while the system is powered on.

PGP-Protected Messaging
PGP Desktop Professional provides email and instant messaging (IM) encryption between AOL Instant Messenger (AIM) users with PGP Desktop to enable confidential communications. Policy-based enforcement simplifies security, providing transparent operation with no additional user requirements.

Flexible Deployment Options
PGP Desktop Professional can be rapidly deployed in standalone mode in smaller companies or to critical users within a larger enterprise. As security requirements evolve, organizations can easily migrate existing users to a centralized, managed architecture without changes to user behaviour or credentials and add new encryption functionality to existing deployments, as needed.

PGP Encryption Platform–Enabled
The PGP Encryption Platform provides a strategic enterprise encryption framework for shared user management, policy, and provisioning automated across multiple, integrated encryption applications. As a PGP Encryption Platform–enabled application, PGP Desktop Professional leverages PGP Universal Server users, keys, and configurations, expediting deployment and policy enforcement. PGP Desktop Professional can be used in combination with other PGP encryption solutions to provide multiple layers of security.

PGP Desktop Professional: Benefits

Enterprise Benefits

Rapid Deployment

Use of standard MSI software packages simplifies deployment of preconfigured clients, reducing deployment costs and accelerating application delivery time.
Silent installation with standard software deployment tools simplifies the end-user experience and reduces help desk calls.

Enforced Security Policies, not Individual Decisions

Email disk encryption policies can be centrally created and enforced so data is secured automatically without requiring changes in user behaviour.
Full disk and removable media encryption, password requirements, and other security policies can also be set and enforced centrally.

Reduced Operational & Maintenance Costs

PGP Universal Server’s unified, Web-based management console provides simplified, intuitive policy and client management capabilities. By leveraging a single management platform, there is no need to manage and maintain multiple management consoles and servers.
Automatic updates are delivered directly from PGP Universal Server, eliminating the need to create and deploy additional installation packages.

Assured Access to Secured Data

Patented PGP Additional Decryption Key (ADK) technology enables corporate access to protected data (according to policy) without the use of master passwords or shared credentials when required by regulatory mandate.

Workgroup Benefits

PGP Desktop Professional provides workgroups and professionals with cost-effective data security based on the same trusted, mature PGP encryption technology that has been proven effective by millions of users worldwide.

Multi-User Workstation Login

Multiple users may access a PGP-encrypted drive using separate credentials, allowing them to securely share workstations without sharing authentication credentials.

Simple, Straightforward Operation

Right-click menus and an intuitive graphical interface make PGP Whole Disk Encryption easy to use.

Individual Professional Benefits

PGP Desktop Professional provides individual professionals with enterprise-grade security for protecting sensitive data in email and instant messages as well as on disk and removable media.

Enables Individuals to Work Securely With Business Partners

PGP Desktop Professional provides flexible security options to securely exchange data with another individual or by integrating with a partner’s enterprise security infrastructure. With more than 30,000 corporate deployments of PGP encryption solutions, PGP Desktop Professional enables out-of-the-box secure communications with many of the world’s largest organizations.

Equips Individuals to Meet Industry & Government Security Regulations

PGP Desktop Professional provides strong encryption of email, instant messaging, files, folders, removable media, and entire disk drives, equipping individuals with the necessary tools to meet both industry and government regulations for data protection such as CA SB1386, HIPAA, and PCI.

Secure Sensitive & Personal Information

Personal desktop and laptop computers often contain banking receipts, tax returns, family information, and other private data. System theft and malware are just some of ways personal information can be exposed and used by identity thieves. PGP Desktop Professional provides multiple options to encrypt sensitive files, protecting private information from prying eyes.

Keep Instant Messages Confidential

Instant messages travel across the Internet and through service providers. PGP Desktop Professional allows AOL Instant Messenger (AIM) chats to remain private between PGP Desktop users. Encryption is performed automatically in the background with no change to the users’ chat experience or application performance.

PGP Desktop Professional: Features

Standard Features

The following features are included with PGP Desktop Professional in both centrally managed and unmanaged installations.

New: Windows Vista Support
PGP Desktop Professional now supports all 32-bit editions of Microsoft’s new Windows Vista operating system.

Policy-Driven Encryption of Removable Media
PGP Desktop Professional users managed by PGP Universal Server automatically apply encryption of removable media according to policy, ensuring consistent data protection for these easily lost devices.

Self-Expanding PGP Virtual Disks
Self-expanding PGP Virtual Disks automatically grow to accommodate increases in data size, eliminating initial space allocation constraints.

Added Support for Mac OS X
Encryption for removable and non-boot disks enable cross-platform sharing of encrypted media.

Multiple Authentication Options
PGP Desktop Email can be secured using a PGP key or X.509 certificate, and supports pre-existing key infrastructures. Smart card/token support enables multi-factor authentication of administrators and users.

PGP Virtual Disk – Enables users to create encrypted personal volumes, providing a unique, secured storage space with an added layer of data security.
PGP Zip – Enables single-step creation of secure, encrypted, compressed archives.
PGP Self-Decrypting Archive – Executable archive that can be decrypted without PGP Desktop, making it ideal for securing files intended for non-PGP users. (Windows only)

Secure File Deletion

PGP Shredder & PGP Wipe – Allow users to securely and permanently eliminate all traces of files from a disk.

Centrally Managed Features

The following features are available when PGP Desktop Professional is centrally managed with PGP Universal Server.

Centrally Enforced Security Policy

Leverages an existing LDAP or Microsoft Active Directory to automatically assign security policies based on user group attributes.
Mail Policy enforces email encryption and digital-signature polices.
Policy enforces disk and removable media encryption and prevents users from decrypting disks or uninstalling the software.

Event Logging
Comprehensive logs record all administrative and disk operations for auditing and security best practices.

Recovery Pass-phrase
Automatically resets the one-time-use recovery pass-phrase after each use, reducing administrative overhead.

PGP Desktop Storage: Flexible storage encryption for distributed professionals

Today’s workforce is continuously connected and constantly on the move. To work in this new environment, employees take business-critical data everywhere, saved on the hard disks in their laptops or on USB flash drives or other portable storage. At the same time, data access is more distributed, and suppliers and other partners have become deeply integrated into many organizations’ business processes and IT infrastructure. Without strong data protection, enterprises may be exposed to significant financial and intellectual property loss, legal penalties, and brand damage.

PGP Desktop Storage provides flexible, multi-layered encryption to protect confidential files stored on local desktop or laptop systems using PGP Whole Disk Encryption and for securely sharing files with selected colleagues using PGP NetShare. This approach ensures that only authorized users can access sensitive data, fulfilling partner and regulatory requirements for information partitioning and security.

Full Disk Protection
PGP Whole Disk Encryption locks down the entire contents of a laptop, desktop, external drive, or USB flash drive, including boot sectors, system, and swap files. The encryption is transparent to the user, automatically protecting data while the system is in use without changing user behaviour or workflow.

Persistent File Encryption on Network Servers
When files need to be shared, PGP NetShare extends the access controls of file servers with strong end-to-end encryption, allowing content owners or security administrators to specify access rights for specific groups or individuals. Authorized users save and share files on file servers and use all applications as before. Content such as documents, spreadsheets, presentations, video, audio, and Web materials is automatically encrypted when saved to a PGP NetShare–protected folder.

PGP Encryption Platform–Enabled
The PGP Encryption Platform provides a strategic enterprise encryption framework for shared user management, policy, and provisioning automated across multiple, integrated encryption applications. As a PGP Encryption Platform–enabled application, PGP Desktop Storage leverages PGP Universal Server users, keys, and configurations, expediting deployment and policy enforcement. PGP Desktop Storage can be used in combination with other PGP encryption solutions to provide multiple layers of security.

PGP Desktop Storage: Benefits

Enterprise Benefits

Easy to Use

End users access and protect local and shared information without changing their work habits.
No user training is required.

Simple Administration, Unified Infrastructure

PGP Universal Server’s Web-enabled management console provides easy access to administer and manage PGP Desktop Storage throughout an organization.
Enterprise-class tools included for user management, IT configuration, rapid deployment, and data recovery.
Security administrators can specify and centrally enforce granular security policies based on requirements, ensuring data is secured automatically and consistently.
Use of standard MSI software packages simplifies deployment of preconfigured clients, reducing deployment costs and accelerating application delivery time.

Enterprise Integration

No changes required to existing storage or networking infrastructure.
Leverage existing LDAP or Microsoft Active Directory services to centrally assign security policies for user groups.
Add PGP applications for email protection as needed, without costly duplication of infrastructure.
All PGP Encryption Platform–enabled applications share a common key and policy management infrastructure.

Workgroup Benefits

Flexible, Scalable Security

Cost-effectively scales from selective data protection to enterprise-wide deployment as organizational requirements change.
Data owners can manage access controls for shared information or delegate access administration to a security manager.

Encryption and decryption are performed transparently on the client, allowing PGP Desktop Storage to scale to include thousands of users without degrading system, server, or network performance.

PGP Desktop Storage: Features

Standard Features

The following features are included with PGP Desktop Storage in both centrally managed and unmanaged installations.

New: Windows Vista Support
PGP Desktop Storage now supports all 32-bit editions of Microsoft’s new Windows Vista operating system.

Policy-Driven Encryption of Removable Media
PGP Desktop Storage users managed by PGP Universal Server automatically apply encryption of removable media according to policy, ensuring consistent data protection for these easily lost devices.

PGP NetShare
Files remain encrypted from the desktop, across the network, and when stored on the server. Encryption and access rights remain with files on the server, when downloaded or copied to local desktops, and when backed up or archived. No changes in user behavior or training is needed. Users simply click on a .doc, .xls, or .ppt file as before.

Directory Access Control Rights
PGP NetShare files and folders have associated access controls. Files are automatically encrypted according to policy, so only authorized users can open files. Unauthorized users who access these files see only cipher-text.

Role Separation
IT administrators can access PGP NetShare–protected files and folders for management and backup processes, without requiring content viewing privileges. With PGP NetShare, personnel who are not explicitly given access rights cannot view documents, even offline copies.

Centralized Management, Deployment, & Policy
Automate provisioning, user and key management, and policy enforcement across email, disk, removable media, and network file encryption using PGP Universal Server's Web-based management console. Role-based administrative access enables administrative separation of duties.

PGP Virtual Disk – Enables users to create encrypted personal volumes, providing a unique, secured storage space with an added layer of data security.
PGP Zip – Enables single-step creation of secure, encrypted, compressed archives.
PGP Self-Decrypting Archives – Executables that can be decrypted without PGP Desktop, making them ideal for securing files intended for non-PGP users. (Windows only)

Secure File Deletion

PGP Shredder & PGP Wipe – Allow users to securely and permanently eliminate all traces of files from a disk.

Centrally Managed Features

The following features are available when PGP Desktop Storage is centrally managed with PGP Universal Server.

Centrally Enforced Security Policy

Leverages an existing LDAP or Microsoft Active Directory to automatically assign security policies based on user group attributes.
Policy enforces disk and removable media encryption and prevents users from decrypting disks or uninstalling the software.
Enables creation and modification of PGP NetShare–protected resources.

Event Logging
Comprehensive logs record all administrative and disk operations for auditing and security best practices.

Recovery Pass-phrase
Automatically resets the recovery pass-phrase after each use, reducing administrative overhead.

PGP Global Directory

The PGP Global Directory is a free service designed to make it easier to find and trust the universe of PGP keys. The PGP Global Directory replaces the current public PGP Key-server, facilitating worldwide key management and access for all PGP users. Following are the main features and benefits of the new PGP Global Directory:

Verified directory of PGP keys – Every 6 months, PGP Corporation will notify the email addresses associated with the keys in the PGP Global Directory to verify users' desires to have their keys publicly available.

Increased trust – Users will be actively managing and verifying the availability of their keys in the PGP Global Directory so other PGP users will know that available keys have been validated within the last 6 months.

Automatic posting of PGP keys – Users no longer have to take the manual of step of posting a new key to the new PGP Global Directory. Active users' keys will be automatically migrated to the PGP Global Directory, increasing the likelihood of receiving encrypted messages from other PGP users.

Default searching of the PGP Global Directory – Future releases of PGP products will automatically default to searching the PGP Global Directory. If a PGP key is posted publicly, PGP products are designed to find it.

Easier to send encrypted messages – Another option introduced in new PGP products is to automatically encrypt a message if a PGP key is found. This new functionality makes it easier for the worldwide community of PGP users to send and receive encrypted emails.