White Papers

FEATURED PAPERS
STRATEGY
PGP TECHNOLOGY
INDUSTRY
Cryptography, Encryption and Standards
GUIDES

"How Whole Disk Encryption Works"

If you're using a computer or a removable USB drive, chances are that you have sensitive data on these devices. Whether it's your home computer with family finances, your work computer with sensitive corporate information, or a thumb drive with government secrets, you want to ensure that there is no unauthorized access to that data if the device is lost or stolen. Whole disk (also known as full disk) encryption protects this data, rendering it unreadable to unauthorized users. Download this paper to learn about how whole disk encryption works

Download the "How Whole Disk Encryption Works" white paper [PDF: 2.5MB] (Registration required)

"Endpoint Data Protection Buyer's Guide"

As volumes of sensitive information flow beyond laptops and desktops and onto USB drives, optical media, and across corporate networks, protecting data has become more difficult than ever. So how does an organization effectively balance convenience, cost, and risk? It is essential to take a holistic and strategic approach to managing the risk of data loss from endpoints, while balancing cost and complexity.

A particularly effective approach is a well-designed set of requirements that highlights and assesses risk of data loss from vulnerable endpoints, and clearly states objectives and requirements to manage or mitigate those risks. A requirements document provides vendors an opportunity to match their solutions, products, and services against these goals.

This Buyer’s Guide addresses risk at the endpoints, looks at the changing regulatory landscape, and develops a best practices methodology that organizations can use as a foundation for a sound and cost-effective endpoint data protection strategy.

Download the "Endpoint Data Protection" Buyer's Guide [PDF: 2.6MB] (Registration required)

"Attaining Payment Card Industry (PCI) Compliance Using the PGP Encryption Platform"

This PGP White Paper explains the Payment Card Industry Data Security Standard (PCI DSS) and how the PGP® Encryption Platform can help organizations comply with PCI DSS requirements to protect card holder data by using encryption.

Download the "Attaining Payment Card Industry (PCI) Compliance Using the PGP Encryption Platform" white paper [PDF: 1.64MB] (Registration required)

"Data Protection is What Matters"
This CIO Magazine white paper explains that traditional security measures are not defending businesses from costly breaches. Only enterprise data protection focuses on what matters most: the data.

Download the "Data Protection is What Matters" white paper [PDF: 163KB]

"Encrypting Business Transactions with PGP Command Line"
Learn the risks and opportunities of business-to-business communications and how these critical transactions can be protected with PGP® Command Line. This PGP® white paper focuses on:

• The evolution of business-to-business communications on the Internet
• Key risks of unsecured business-to-business transactions
• Introduction to PGP Command Line
• Use cases of automated, authenticated, and encrypted transactions with PGP Command Line
• Future trends in secured business communications

Download the "Encrypting Business Transactions with PGP Command Line" white paper [PDF: 259KB] (Registration required)

"Enterprise Email Encryption Buyer's Guide 2008"
Encryption of email is a critical strategy for enterprises seeking to protect important information and mitigate business risk. The Enterprise Email Encryption Buyer’s Guide 2008 from Osterman Research provides a comprehensive overview of the factors an organization must consider when evaluating and purchasing encryption solutions for enterprise email systems.

Download the "Enterprise Email Encryption Buyer's Guide 2008" white paper [PDF: 1.18MB] (Registration required)

"Inside PGP® Key Reconstruction"
One of the most common problems with a large-scale PGP® deployment is that users sometimes forget their passphrases or even lose their private keys. This leads to help desk calls that can be costly for an organization. Over the years, PGP Corporation has taken several major steps to deal with this problem. Various pieces of the PGP® solution when factored together present a solid front against this problem, including use of split-key ADKs for data recovery, automatic binding of designated revokers to keys upon generation, and now key reconstruction.

Download the "Inside PGP Key Reconstruction" white paper [PDF: 457KB]

"The Insider Threat: Understanding the Risks & Defending the Enterprise"
In today's world of disappearing network perimeters and high-stakes cyber-crime, no threat looms larger than that of the Insider. This PGP® white paper is based on a webcast in the PGP Education Series and features Doug McLean, Vice President Products, and Jim Reavis, President of Reavis Consulting Group. In this webcast, users will learn:

• The top internally focused security threats
• The key components of a defense-in-depth protection against the Insider Threat
• The benefits of comprehensive encryption architecture in providing durable protection

Download "The Insider Threat: Understanding the Risks & Defending the Enterprise" white paper [PDF: 871KB]

"Introduction to Cryptography"
This guide is useful to anyone interested in knowing the basics of cryptography. Recently revised, the guide looks at why cryptography is important and includes a brief history of cryptography as well as what the future might hold.

Download the "Introduction to Cryptography" white paper [PDF: 927KB] (Registration required)

"PGP Command Line Technology Overview"
Applications transferring, managing, and archiving critical information are the foundation of corporate information systems. Security breaches and the resulting consequences have made organizations aware of the many ways sensitive corporate information and customer data can be compromised. For IT managers, architects, and developers, finding an encryption solution that helps address risk mitigation without requiring significant integration may appear challenging. This PGP® white paper uses a variety of common business applications as examples for integrating PGP® Command Line encryption.

Download the "PGP Command Line Technology Overview" white paper [PDF: 1MB]

"The PGP Encryption Platform"
As businesses seek new operational models, diversify globally, and develop closer relationships up and down the value chain to achieve greater profitability, IT organizations are being asked to help drive innovation while securing systems and communications to protect brand equity and meet compliance obligations. To meet these business goals, enterprises are increasing the use of encryption. The PGP® Encryption Platform offers a new approach that allows businesses to deploy and manage multiple encryption applications cost-effectively, saving capital and human resources to focus on additional projects. This PGP® white paper is intended for business managers and compliance officers participating in IT portfolio management as well as IT management responsible for implementing information security projects.

Download "The PGP Encryption Platform" white paper [PDF: 633KB] (Registration required)

"The PGP Global Directory"
Just as the public PGP® Keyserver was operated as a free service, the PGP® Global Directory will continue to be offered as a free service to the PGP® global community. The PGP Global Directory will offer many new features and benefits. It also addresses some longstanding issues with the legacy public PGP Keyserver as well as with the design of keyservers in general. This PGP® white paper details the features and benefits of the PGP Global Directory as well as how to participate.

Download "The PGP Global Directory" white paper [PDF: 247KB]

"Request for Success: How to Write an Effective RFP for Secure Messaging"
Encryption of email is a critical strategy to mitigate security risks, protect sensitive data, and ensure regulatory compliance. Key to the success of obtaining an optimal solution is a well-written and well-executed Request for Proposal (RFP). This PGP® white paper outlines the key steps for writing an effective RFP and explains the success factors for managing the RFP process to ensure organizations get the secure-messaging solution they need.

Download the "Request for Success" white paper [PDF: 133KB] (Registration required)

"The Role of Encryption in Data Protection"
This PGP® white paper is based on a presentation given in 2006 by Dave Cullinane, CISO for eBay Marketplaces. The paper identifies the multiple locations where information is most vulnerable and also addresses the impact of data breaches on the industry and consumers as well as the measures organizations can take to prevent such attacks. In addition, it presents an overview of encryption’s role in protecting data as well as the range of individual to enterprise encryption solutions currently available plus new emerging technologies. Finally, it outlines four key criteria to help organizations select a suitable encryption vendor.

Download "The Role of Encryption in Data Protection" webcast summary (white paper) [PDF: 132KB]

"Staying Out of the Headlines: Strategies for Protecting Critical Data Transfers & Backups"
When things are going well, the success of the security professional is difficult to measure. Security successes are often unknown because there is little positive news coverage for protecting data from unauthorized or unintended disclosure. Unfortunately, security failures have more news value and tend to be widely publicized. This PGP® white paper reviews some of the better-known security incidents that occurred in 2005, explains why these things happen, and discusses some of the underlying issues.

Download the "Staying Out of the Headlines: Strategies for Protecting Critical Data Transfers & Backups" white paper [PDF: 1MB]