Press Release: PGP Universal Server with Gateway Email and Key Management Undergoes Common Criteria Evaluation Process

Palo Alto, CA / 02 April, 2008 - PGP Corporation, a global leader in enterprise data protection, today announced that PGP UniversalTM Server and PGP UniversalTM Gateway Email are currently undergoing Common Criteria Evaluation Assurance Level 2 (EAL2) certification. Providing consistent key management, policy management, and reporting across encryption applications, the PGP Universal Server is the foundation of the PGP® Encryption Platform, enabling enterprises to deploy and manage PGP® products and 3rd party encryption applications cost-effectively.

Common Criteria evaluation of security products is important for global enterprises and frequently mandated for commercial information security products purchased by governments worldwide, including the U.S. government for use in national security systems. The evaluation of the PGP® solutions is being performed according to the Canadian Communications Security Establishment's (CSE) Common Criteria Evaluation and Certification Scheme (CCS), globally recognized as part of the Common Criteria program.

"PGP Corporation's commitment to Common Criteria is a continuation of our strong active support and engagement in global standards," said Phil Dunkelberger, president and CEO of PGP Corporation. "PGP Corporation is actively involved in the IETF standards process and the company believes in continuous validations of product according to the National Institute of Standards and Technology's (NIST) Federal Information Processing Standard (FIPS). Global enterprises demand the broadest range of standard to conduct business seamlessly and PGP Corporation continues to deliver."

Common Criteria is an internationally recognized set of guidelines (ISO 15408), which define a common framework for evaluating security features and capabilities of Information Technology security products. The standard consists of several predetermined evaluation assurance levels, each one more stringent than the last. Common Criteria allows vendors to have their products tested against a chosen level by an independent third-party testing laboratory. The Common Criteria Mutual Recognition Agreement (CCRA) is a pact which was designed to allow all evaluations up to EAL4 to be recognized by all participating countries, regardless of where the evaluation was completed. There are currently 25 countries involved in the CCRA, including the United States and Canadian governments, and the EU.

Common Criteria certification of security products is mandated by the U.S. government for federal purchases. The National Information Assurance Acquisition Policy, NSTISSP No. 11, requires agencies to purchase only those commercial security products which have met specified third-party assurance requirements and have been tested by an accredited national laboratory.

In order to facilitate the prompt completion of the Common Criteria evaluation process, PGP Corporation has partnered with Corsec Security and DOMUS IT Security Laboratory. Corsec is a consulting firm with over ten years of validation experience. DOMUS is an accredited Common Criteria test laboratory based in Ottawa, Canada with over 12 years of experience. More information about PGP Corporation's partners can be found at www.corsec.com and www.domusitsl.com.

PGP Universal Gateway Email provides centrally managed, standards-based email encryption to secure email communications with customers and partners. By encrypting data at the gateway, PGP Universal Gateway Email ensures data is protected from unauthorized access in transit over the public Internet and at rest on a recipient's mail server. With PGP Universal Gateway Email, organizations can minimize the risk of a data breach and comply with partner and regulatory mandates for information security and privacy.

About PGP Corporation
PGP Corporation is a global leader in email and data encryption software for enterprise data protection. Based on a unified key management and policy infrastructure, the PGP® Encryption Platform offers the broadest set of integrated applications for enterprise data security. PGP® platform-enabled applications allow organizations to meet current needs and expand as security requirements evolve for email, laptops, desktops, instant messaging, smart phones, network storage, file transfers, automated processes, and backups.

PGP® solutions are used by more than 80,000 enterprises, businesses, and governments worldwide, including 95 percent of the Fortune® 100, 75 percent of the Fortune® Global 100, 87 percent of the German DAX index, and 51 percent of the U.K. FTSE 100 Index. As a result, PGP Corporation has earned a global reputation for innovative, standards-based, and trusted solutions. PGP solutions help protect confidential information, secure customer data, achieve regulatory and audit compliance, and safeguard companies' brands and reputations. Contact PGP Corporation at www.pgp.com.

About Corsec Security, Inc.
Corsec Security, Inc. specializes in helping companies navigate through the complex process of receiving FIPS 140 and Common Criteria (CC) certifications. For further information, please visit www.corsec.com.

About Domus IT Security Laboratory
DOMUS IT Security Laboratory is a recognized and accredited 3rd party Common Criteria and FIPS 140 test lab. DOMUS was the first laboratory to be accredited by the Standards Council of Canada (SCC) to conduct Common Criteria Evaluations and Certifications. For further information, please visit www.domusitsl.com.

Media & analyst contact for PGP Corporation:
Christina Grenier
PGP Corporation
+1 650 543 3697
cgrenier@pgp.com

Legal Notice Regarding Forward-Looking Statements
Some of the statements in this press release are forward-looking, including statements regarding the availability, plans, delivery, goals, development, expected features, expected benefits and competitive position of PGP products implementing or leveraging the PGP technologies. All references made to product feature enhancements, improvements in Platform support or additional functionality are subject to change at PGP Corporation's sole discretion. All future descriptions of PGP technology and products are subject to availability only if PGP Corporation decides to build them and when PGP Corporation decides to make them commercially available. Actual results could differ materially from those expressed in any forward-looking statements. Risks and uncertainties that PGP Corporation faces that could cause results to differ materially include risks associated with any unforeseen technical difficulties or software errors related to the final development and launch of any of PGP Corporation's products; any technological, regulatory, or standards changes in the security, encryption and authentications market which could make PGP Corporation's products less competitive or require feature changes in these products; any slowdown in the adoption by businesses of encryption suites, secure email, Internet technologies or related standard. The forward-looking statements contained in this release are made as of the date hereof, and PGP Corporation does not assume any obligation to update such statements nor the reasons why actual results could differ materially from those projected in such statements.

PGP and the PGP logo are registered trademarks of PGP Corporation. Product and brand names used in the document may be trademarks or registered trademarks of their respective owners. Any such trademarks or registered trademarks are the sole property of their respective owners.