資安常用軟體‎ > ‎加密解密‎ > ‎

PGP Desktop Professional

張貼者:2010年6月12日 上午10:37service orderble   [ eddie liu 已於 2012年8月7日 晚上11:19 更新 ]

PGP是目前最優秀,最安全的加密方式。 這種軟件的核心思想是利用邏輯分區保護文件,比如,邏輯分區E:是受PGP保護的硬盤分區,那麼,每次打開這個分區的時候,需要輸入密碼才能打開這個分區,在這個分區內的文件是絕對安全的。 不再需要這個分區時,可以把這個分區關閉並使其從桌面上消失,當再次打開時,需要輸入密碼。 沒有密碼,軟件開發者本人也無法解密! PGP是全世界最流行的文件夾加密軟件。 它的源代碼是公開的,經受住了成千上萬頂尖黑客的破解挑戰,事實證明PGP是目前世界上最安全的加密軟件。


---------------------------------------------------

開發商:PGP Corporation
原廠網址:http://www.pgp.com/products/packages/desktop_pro/index.html
更新日期:2011/05/09
採購正式版、大量授權報價、技術支援、軟體諮詢、委託採購、詢問報價請來電 02-29299388 分機16 , 
來信service@orderble.com,或點我
------------------------------------------------------------------------------
PGP Desktop Professional 提供編成加密應用全面的保護敏感數據在電子郵件,實時訊息以及硬盤或可移動的媒介。 這數據像是電子郵件和實時訊息可能被攔截或被誤導,筆記型計算機容易地搞丟並且個人計算機經常是偷竊的目標都是有高度風險。 PGP Desktop Professional獲取機要信息無論哪裡它存在保護商業機密、幫助會議中的伙伴的機密和管理授權信息安全和私密性。
 
磁盤、扇區& 檔案保護

PGP Desktop Professional 包括PGP 整體硬盤加密鎖住在筆記型計算機、桌上型、外接儲存裝置或USB 隨身碟的所有內容,包括啟動扇區、系統, 和交換文件。 前置起動加密並強制執行要求使用者認證, 自動地保護數據。 每當系統啟動時扇區和文件即加密並提供多層安全加強保護敏感數據。

PGP-實時訊息保護

PGP Desktop Professional 提供電子郵件和實時訊息(IM) 加密在AOL 實時訊息(AIM)用戶之間以PGP Desktop 使通信過程加密。 基於政策的執行簡化安全, 提供清楚的操作不需用戶要求才加密。

靈活的部署選項

PGP Desktop Professional 可獨立迅速地部署在小公司中或大型企業中重要用戶內。 當安全要求逐步形成,組織可能容易地轉換集中控制對於現有的用戶或部屬新用戶,對於轉換後的用戶不需改變原本習慣或增加新的密碼認證功能可依其需要來設定。

PGP 賦予加密平台

PGP 加密平台為共有的用戶管理、政策和供應提供一個策略企業加密框架且自動化橫跨多種平台,整合加密應用程序。 作為PGP 加密平台能夠應用, PGP Desktop Professional 影響PGP Universal服務器用戶、鑰匙和配置,加速部署和政策執行。 PGP Desktop Professional 可使用多種組合與其它PGP 加密解決方案來提供多層安全性。

Overview

Email and mobile computers have quickly emerged as industry-standard tools for increasing communication and user productivity. Unfortunately, unprotected email and mobile devices pose a critical risk to an enterprise's most sensitive data: customer information, financial data, trade secrets, and other proprietary information. Exposure of this data can result in financial loss, legal ramifications, and brand damage.

PGP® Desktop Professional provides a comprehensive set of encryption applications to protect sensitive data in email and instant messages and on disk or removable media. PGP Desktop Professional secures confidential data, protecting sensitive business information and helping to meet partner and regulatory mandates for information security and privacy.

  • Easy, automatic operation-Protects sensitive email without changing the user experience or email application.
  • Enforced security policies-Automatically enforce email and data protection with centrally managed policies.
  • Accelerated deployment-Achieves end-to-end email encryption using the existing infrastructure.
  • Reduced operation costs-Result from centrally automating email encryption policies.

As a PGP® Encryption Platform–enabled application, PGP Desktop Professional can be used with PGP Universal™ Server to manage existing policies, users, keys, and configurations, expediting deployment and policy enforcement. PGP Desktop Professional can also be used in combination with other PGP® encryption applications to provide multiple layers of security.

Technical Specifications

Technical Specifications

Supported Operating Systems

Windows®

  • Windows 7 (all 32- and 64-bit editions)
  • Windows Vista (all 32- and 64-bit editions, including Service Pack 1 and 2)
  • Microsoft Windows XP Tablet PC Edition 2005 (requires attached keyboard)
  • Windows XP Home Edition (Service Pack 2 or 3)
  • Windows XP Professional 64-bit (Service Pack 2)
  • Windows XP Professional 32-bit (Service Pack 2 or 3)
  • Microsoft Windows 2000 (Service Pack 4)

Note: The above operating systems are supported only when all of the latest hot fixes and security patches from Microsoft have been applied.


PGP Whole Disk Encryption (WDE) is supported on all client operating systems above as well as the following Windows Server, Mac and Linux operating systems:

Windows® Server

  • Windows Server 2008 SP 1 and 2 (32- and 64-bit editions)
  • Windows Server 2008 R2 (32- and 64-bit editions)
  • Windows Server 2003 (Service Pack 1 and 2)
  • Windows Server 2003 SP 2 (32- and 64-bit editions)

Mac OS® X

  • Apple Mac OS X10.5.x or 10.6.x (Intel-based Macs only)

Linux®

  • Ubuntu 8.04 and 9.04 (32-bit versions) and Red Hat Enterprise Linux/CentOS 5.2 and 5.3 (32-bit versions) **

** PGP Whole Disk Encryption for Linux is command line only

Localization

  • English
  • German
  • Japanese
  • French (France)
  • Spanish (Latin America)

Authentication Options

  • OpenPGP RFC 4880 keys
  • X.509 keys

Symmetric Key Algorithms-PGP® Whole Disk Encryption

  • AES 256-bit keys

Messaging Protocols

  • POP3
  • IMAP
  • SMTP
  • MAPI
  • Lotus Notes

Messaging Security Standards

  • PGP/MIME RFC 3156
  • OpenPGP RFC 4880
  • S/MIME v3 RFC 2633
  • X.509 v3

Supported Email Clients

PGP Desktop for Windows will, in many cases, work with Internet-standards-based email clients other than those listed here. PGP Corporation, however, does not support the use of other clients. PGP Desktop for Windows has been tested with the following email clients:

  • Microsoft Outlook 2007 SP1 (Outlook 12)
  • Microsoft Outlook 2003 SP3
  • Microsoft Outlook XP SP3
  • Microsoft Windows Mail 6.0.600.16386
  • Microsoft Outlook Express 6 SP1
  • Windows Live Mail version 2009
  • Mozilla Thunderbird 2.0
  • Lotus Notes 6.5.6, 7.0.3, 8.02, 8.5
  • Novell GroupWise 6.5.1

PGP Desktop will, in most cases, work without problems with any Internet-standards-based email client that runs on Mac OS X 10.5.x or Mac OS X 10.6.x.

  • Apple Mail 2.1.1, 3.4, 4.1
  • Microsoft Entourage 2008
    - Entourage is compatible for POP/IMAP only. "Exchange Mode" is supported when using the Entourage Scripts included with PGP Desktop. Automatic proxying is not supported with the scripts. For more information on using the scripts, see "Integrating with Entourage 2008" in the PGP Desktop for Mac OS X User's Guide.

Supported IM Clients

PGP Desktop is compatible with the following instant messaging clients when encrypting AIM instant messages, file transfers, and direct connections:

  • AOL AIM 6.5.5
    - To encrypt instant messages with AIM 6.5, you must change the default port that AIM uses from 493 to 5190.
    - Audio and video connections are not encrypted by PGP Desktop.
    - Continued interoperability with the AIM service may be affected by changes made to the underlying AIM protocols.
  • Trillian 3.1 (Basic and Pro)

Other instant messaging clients may work for basic instant messaging, but have not been certified for use.

Symmetric Key Algorithms

  • AES (up to 256-bit keys)
  • CAST
  • TripleDES
  • IDEA
  • Twofish

Symmetric Key Algorithms-PGP® Whole Disk Encryption

  • AES 256-bit keys
  • AES 128-bit keys (enabled on PGP Universal Server)

Hashes

  • SHA-2 (up to 512-bit hashes)
  • SHA-1
  • MD5
  • RIPEMD-160

Public Key Algorithms

  • Diffie-Hellman
  • DSA (1024-bit keys only)
  • (up to 4096-bit keys)

Centralized Management Requirements

PGP Whole Disk Encryption is centrally managed by PGP Universal Server which requires a dedicated hardware server. For supported hardware and other information, please refer to thePGP Universal™ Server technical specifications.

Two-Factor Authentication (Windows Only)

Compatible Smart Card Readers for PGP WDE Authentication

The following smart card readers are compatible when communicating to a smart card at pre-boot time. These readers can be used with any compatible removable smart card (it is not necessary to use the same brand of smart card and reader).

Generic smart card readers

Most CCID smart card readers are compatible. The following readers have been tested by PGP Corporation:

  • OMNIKEY CardMan 3121 USB for desktop systems (076b:3021)
  • OMNIKEY CardMan 6121 USB for mobile systems (076b:6622)
  • ActiveIdentity USB 2.0 reader (09c3:0008)
  • SCM Microsystem Smart Card Reader model SCR3311
  • CyberJack smart card readers
    - Reiner SCT CyberJack pinpad (0c4b:0100).
  • ASE smart card readers
    - Athena ASEDrive IIIe USB reader (0dc3:0802)
  • Embedded smart card readers
    - Dell D430 embedded reader
    - Dell D630 embedded reader
    - Dell D830 embedded reader

Compatible Smart Cards or Tokens for PGP WDE Authentication (Windows Only)

PGP Whole Disk Encryption is compatible with the following smart cards for pre-boot authentication:

  • ActiveIdentity ActivClientCAC cards, 2005 model
  • Aladdin eToken PRO 64K, 2048 bit RSA capable
  • Aladdin eToken PRO USB Key 32K, 2048 bit RSA capable
  • Aladdin eToken PRO without 2048 bit capability (older smart cards)
  • Aladdin eToken PRO Java 72K
  • Aladdin eToken NG-OTP 32K
    Note: Other Aladdin eTokens, such as tokens with flash, should work provided they are APDU compatible with the compatible tokens. OEM versions of Aladdin eTokens, such as those issued by VeriSign, should work provided they are APDU compatible with the compatible tokens.
  • Athena ASEKey Crypto USB Token
  • Athena ASECard Crypto Smart Card
    Note: The Athena tokens are compatible only for credential storage.
  • Axalto Cyberflex Access 32K V2
  • Charismathics CryptoIdentity plug 'n' crypt Smart Card only stick
  • EMC RSA SecurID SID800 Token (v1 and 2)
    Note: This token is compatible only for key storage. SecurID is not compatible.
  • EMC RSA Smart Card 5200
  • Marx CrypToken USB token
  • Rainbow iKey 3000
  • S-Trust StarCOS smart card
    Note: S-Trust SECCOS cards are not compatible.
  • SafeNet iKey 2032 USB token
  • T-Systems Telesec NetKey 3.0 smart card
  • T-Systems TCOS 3.0 IEI smart card
  • Personal Identity Verification (PIV) cards
    - Oberthur ID-One Cosmo V5.2D PIV cards using ActivClient version 6.1 client software.
    - Giesecke and Devrient Sm@rtCafe Expert 3.2 PIV cards using ActivClient version 6.1 client software.

PGP Whole Disk Encryption for Windows Operating Systems also recognizes and works with smart cards from other vendors if the vendor includes a standards-based PKCS-11 library in its software drivers.



Comments