Executive Briefs

"Email Encryption Gateway Best Practices"
Securing data in transit as it enters and exits a network at the gateway is an increasingly popular method of deploying enterprise email encryption. The opportunity to achieve compliance and improve information security makes gateway-based encryption an attractive and viable solution for organizations that have not already deployed the technology. Based on its experience deploying and supporting email encryption gateways, PGP Corporation has developed a set of best practices to help businesses plan the deployment or update of their email encryption gateway system.

Download " Email Encryption Gateway Best Practices" [PDF: 83KB] (Registration required)

"Information Security: Breaking the Code"
This PGP Expert Panel Summary is based on a 1-hour panel discussion sponsored by PGP Corporation and hosted by CTO and Chief Security Officer Jon Callas. The panel was moderated by Dick Shaffer, president and editor of Dow Jones & Co."s Financial Information Services, and featured the following well-known security authors: Bill Cheswick, David Kahn, Gary McGraw, Peter Neumann, and Ira Winkler. The author"s panel discussed the current status of information security, today"s attackers and what motivates them, current technologies, and what it takes to plan for better protection in the future.

Download "Information Security: Breaking the Code" [PDF: 62KB]

"A Roadmap for Security"
This PGP Expert Panel Summary is based on a 1-hour panel discussion moderated by Esther Dyson and featuring industry experts who are also members of the PGP Technical & Business Advisory Boards: Carl Amdahl, Derek Atkins, Crispin Cowan, and Phil Zimmermann. The panelists discussed a wide range of topics, including who is responsible for security—the consumer, the security vendor, or both—as well as what needs to be secured, what progress is being made, and which trends are cause for optimism.

Download "A Roadmap for Security" [PDF: 95KB]

"An Encryption Primer"
There are many strategies and products that protect an organization's technology infrastructure, but only one for protecting digital information. Encryption—the business standard for securing email, stored data, corporate databases, mobile devices, and server-to-server communications—-protects the data itself by scrambling it in a way only the intended recipient can decipher. This PGP Executive Brief is intended to serve as a reference tool that will:

• Explain how encryption fits into today's security landscape
• Provide an overview of encryption basics
• Identify some of the options available for securing digital information assets
• Offer a systematic method for choosing an encryption solution

Download "An Encryption Primer" [PDF: 80KB] (Registration required)

"Security Threats & Email Hygiene Basics"
Today, email has become the single most widespread and common productivity tool in use by organizations worldwide. At the same time, securing confidential and private electronic information has become a visible and highly regulated (Sarbanes-Oxley, Gramm-Leach Bliley, HIPAA, Basel II, 21 CFR 11) activity. This PGP Executive Brief is intended to serve as a reference tool by defining key terminology associated with:

• Threats to email, email systems, networks, and individuals
• Solutions spanning the concept of "email hygiene"
• Secure-messaging solutions available from PGP Corporation

Download "Security Threats & Email Hygiene Basics" [PDF: 76KB] (Registration required)

"Encryption - Critical to Our Infrastructure"
Howard Schmidt, Chief Information Security Officer for a major e-commerce company, former CSO for Microsoft Corporation, and former Chair of President Bush's Critical Infrastructure Protection Board, provides his insights on Homeland Security, its impact on our critical infrastructure, and the growing importance of using encryption to protect our digital assets and to conduct business with Jim Reavis, President of Reavis Consulting Group and Editor of the CSOinformer newsletter.

Download "Encryption - Critical to Our Infrastructure" [PDF: 535KB]

"The HIPAA Security Rule and PGP Corporation"
This white paper reviews the security requirements set forth by the 1996 Health Insurance Portability & Accountability Act (HIPAA) and discusses ways the PGP Corporation suite of email and file system encryption products can be used to meet those specifications. It also presents the ways in which PGP Corporation's enterprise-scale encryption technologies can be implemented to bring health care organizations into compliance with the law.

Download "The HIPAA Security Rule and PGP Corporation" [PDF: 80KB] (Registration required)