Is there any chance that EEPC, EEFF or a variant will be able to generatePGP (Ppen PGP) compatible keys? It would be a great addition. We have customerswho send PGP encrypted data that are again encrypted by EEPC and EEFF. Why thehassle? If EEPC or EEFF can work with PGP encrypted documents, it would avoid the need to run a PGP infrastructure on top of McAfee's. we should be able to generate key pairs and send public keys customer and customers should be able to send us their PGP public keys that can be imported into ePO EEE console. Any takers?
you can generate personal keys with EEFF to do information exchange with other users of EEFF?
Adding support for OpenPGP is interesting, though unlikely given it's owned by one of our competitors. How much would you be willing to pay per licence for this kind of option do you think?
1. you can generate personal keys with EEFF to do information exchange with other users of EEFF?
not necessarily other EEFF users but also with other PGP users and products that support openPGP keys. PGP is available in desktop editions and can be bought online. customers do not need to invest arm and leg to support encryption. at the same time, PGP does not offer features that EEFF offers (both on management/client side). For companies like us, support for openPGP can make our life easier by removing one more redundant product from the network especially since we already have network wide encryption by McAfee. At present, customers need to install EEFF client and connect to our server to properly authenticate keys and decrypt files. Customers are hesitant to install our software and open up firewall ports for just sending files to us. PGP being an industry standard, they woudn;'t mind installing in one or two PCs.
2. Adding support for OpenPGP is interesting, though unlikely given it's owned by one of our competitors. How much would you be willing to pay per licence for this kind of option do you think?
I though openPGP is free for use. most of the sftp servers and client software supports it now. The benrfit is that customers do not need a PGP software on their side to decrypt a file; instead, their ftp client can download and decrypt file on the fly. I for one, won't think it would be add much cost to the end user. On the other side, having support for standards like PGP in an ecryption prpduct actually gives much more boost on the decision making and I wouldn't mind paying few more dollars for it.