Tom McCune's page for

   Pretty Good Privacy  

"With PGP..., you can protect the privacy of your e-mail messages and files by encrypting them so that only the intended recipients can read them. You can also digitally sign messages and files, which ensures their authenticity.  A signed message verifies that the information within it has not been tampered with in any way."

 - Quoted from the manual

"If all the personal computers in the world - 260 million - were put to work on a single PGP-encrypted message, it would still take an estimated 12 million times the age of the universe, on average, to break a single message.”

 - William Crowell, Deputy Director, National Security Agency, March 20, 1997.

  As of this writing, PGP Desktop 10.0.1 is the current version.  This install package contains the following components; which are enabled for use is determined by the license you purchase: Whole Disk Encryption ("full disk encryption for all data (user files, swap files, system files, hidden files, etc.) on desktops, laptops, and removable media"), NetShare ("enables teams to securely share documents on file servers by automatically and transparently encrypting the files for fine-grained group access. This approach ensures that only authorized users can read or modify files"), Virtual Disk ("provides data security for desktops and laptops, making it possible for enterprises, workgroups, and individuals to protect sensitive information without changing the existing IT infrastructure or disrupting work processes. This award winning, easy-to-use solution encrypts virtual volumes"), PGP Messaging ("automatic, transparent encryption solution for securing internal and external confidential email communication"), and PGP Zip ("A PGP Zip Archive package is a single file that is encrypted and compressed for convenient transport or backup. These archive files can hold any combination of files and/or folders, and are especially convenient for secure transport or backup").  This matrix identifies which components are enabled in various product licenses.  PGP Desktop Trial (which includes the option of installing directly as PGP Freeware level of functioning) allows you to try all the applications that are part of the PGP Desktop product for 30 days; "At the end of the trial period, any local disks that have been encrypted using PGP Whole Disk Encryption will automatically decrypt.  PGP file encryption and signing, PGP Zip, “Current Window”, and “Clipboard” functionality will continue to allow encryption, and you will still be able to use the decryption capabilities for all PGP Desktop Trial product functions, thus ensuring that any encrypted data remains accessible." 

PGP Mobile "comprehensive email and data encryption for Windows Mobile smartphones and storage cards that provides powerful protection for the data stored, in transit, and shared with others"

PGP Support Package for BlackBerry "enables enterprises to extend market-leading PGP messaging security solutions for laptops and desktops to BlackBerry smartphones"

Endpoint "provides built-in security that detects, authorizes, and secures removable storage devices and media (such as USB drives, CDs, and DVDs)"

PGP Universal "The first product built on PGP Corporation's Self-Managing Security Architecture.  By shifting the burden of protecting critical information from users' desktops to the network, PGP Universal makes it possible to automatically and transparently provide end-to-end email security."

PGP Command Line "enables organizations to automate encryption and signing of sensitive consumer and business information, securing it for local storage or transfer over the Internet."  This is not really priced for home/personal use.

NAI had produced both Personal Security and Corporate Desktop (previously named Desktop Security) versions that can be used commercially, and include PGPdisk for disk encryption.  As of March, 2002, NAI had announced that they were discontinuing the product, due to insufficient profits.  They had stopped selling both PGP Corporate Desktop (their last version is 7.1.1) and PGP Personal Security (the only version is 7.0.3 - the 5.5.x and 6.x versions were named Personal Privacy).  The only PGP 7.x Freeware is PGPfreeware 7.0.3 (for noncommercial use).

   PGP International "i" versions were created from the legally exported printed source code (PGP source code is released in binary form as of PGP 6.5.8) of the official versions (which the USA government would not allow to be exported).  They were basically the same as the official versions, but free of USA patent restrictions and tended to have RSA compatibility that some official versions lacked.  PGP freeware versions and source code can be found here.  Please note the following from the PGPi site:

"[13 Dec 1999] US Government grants NAI export license for PGP: Network Associates, Inc. today announced that it has been granted a full license by the U.S. Government to export PGP world-wide, ending a decades-old ban on the export of strong encryption products.  The license, effective immediately, marks the end of the PGPi scanning and OCR project, which started with PGP 5.0i in 1997."

QDPGP "is a PGP plug-in for Pegasus Mail (Win32).  It is 'freeware' and may be used and copied, without fee or obligation, for private or commercial use."  With PGP 6.x and above, QDPGP allows you to use the improved signature hash functions of SHA1 and RIPEMD160 with RSA keys.  With PGP 6.5.x and above, QDPGP "Supports synchronization with KeyServers when encrypting/verifying messages."

PM-PGP  "This software (Win95 through WinXP) enables You to easily integrate PGP into Pegasus Mail and protect Your personal communication against unauthorized access.  It contains a special feature ("AutoPush") that automatically initiates the encryption process for selected addresses provided by a user-edited list.."

PGPfone "is PGP for voice PC to PC over the Internet."  This software has not been upgraded for years.

PGPClick is a Windows program which provides easy access to the DOS-based 2.6.x versions of PGP.  I was amazed that this gives users of 2.6.x the same as my then favorite PGP 6.0.2 feature, the Use Current Window functionality.

PGPsendmail "provides for automatic encryption of Email messages, using PGP."  I'm told that this is a way to use PGP from your web site; and that the included documentation tells you how to set it up.

NSDPGP  "These COM Objects are designed to be used from ASP, Visual Basic, the Windows Scripting Host, MS Office VBA, Java, Delphi, Visual C++ etc. All are "freeware" and may be used and copied, without fee or obligation, for private or commercial use."

 PGP Quotes

Bulgarian Translation of this page

PGP Global Directory

PGP In Russia

OpenPGP Message Format

PGP Format "Oddities"

PGPdump Interface

Older PGP Documentation

Current PGP Documentation


 Crypto-Gram Newsletter

Protecting Your Privacy & Security

 Other Encryption Software Links

My PGP Public Keys   RSA 4096/2048   DH 4096/1024   RSA 2048


 PGP Questions & Answers

Why This PGP Q&A?

Privacy & Authenticity?

Which PGP Version Should I Use?

What Is PGP Freeware?

Windows XP Issues?

Installing PGP?

PGP Without Installation?

Can't Re-Install Version 6.0.x?

PGP 6.5.x Conflicts?

PGP 7.0 Annoyances?

PGP 8.0 Annoyances?

PGP 9.x Issues?

Installing Multiple Versions?

Remove Right-Click Menu?

Change The Version Line?

Why Not Product X?

What About GPG?

RSA Support?

What Is CAPI?

Where is PGP 2.6.4?

How Secure Is PGP?

Only 128 Bit Encryption?

PGP 5.0 Key Generation Flaw?

ADK Security Flaw?

Private Key Vulnerability?

Windows ASCII Armor Parser Vulnerability?

PGP Viewer Vulnerability?

Otterloo Attack?

Is RSA Broken?

Chosen-Ciphertext Attack?

Is SHA1 Broken?

Is PGP 2.6.x More Secure?

What Does My Passphrase Do?

What is a Smart Card?

Encryption To Multiple Recipients?

Conventional Encryption Compatibility?

Conventional Encryption More Secure?

Best Symmetric Encryption Algorithm?

Best Signature Hash Function?

Why Such A Short Signature?

Encrypts Only Text?

Use Current Window?

Email Client Problems?

Why Can't I Read Sent Messages?

Bad, Unknown, or Invalid Signature?

Signature Verification & Word Wrap Setting?

How Many Keys Can I (Should I) Have?

 The Perfect PGP Key?


Key Size & Speed?

Photo ID Compatibility?

How Do I Disable a Key?

Why So Many 2047 Bit RSA Keys?

How Do I Change My Email Address On My Key?

Can I Delete My Old Key From a Server? Revoke it?

 Key Already On Server Warning?

Searching For Keys?

Additional Key Servers?

Import Key From Email?

Import X.509 Certificate?

Why Can't I Use Old Keys?

Why Can't I Use New Keys?

PGP 7.0 Key Compatibility?

Unsupported Packet Format?

How Do I Add a Private Key To My 2.6.x Keyrings?

What Is File Wiping?

What is PGPdisk?

What is PGPnet?

 What's New In Version x.x.x?

Other Encryption Software Links

  "HushMail offers the world's only, secure, end-to-end, free, Web-based email service." This appears to be rather secure encryption for your email when writing to other HushMail users, but is not a substitute for PGP - see  this.  

Eraser "consists of several utilities built on top of a powerful file wiping library capable of securely removing sensitive data from your hard drive."  Included is "a scheduler which allows you to program the erasing of unused disk space or, for example, cache files to happen regularly, at night, during your lunch break, at weekends or whenever you like."

 Return to Tom McCune's Homepage

Comments or Suggestions:

Please notice that part of the above address needs to be removed.