Endpoint Encryption

We use gpg on our linux boxes to encrypt files to groups of people.  By creating a file and including a csv of the users whose keys we wish to use, we can automatically have all the users' keys added to the encryption.  We wish to perform a similar function on our windows clients which are licensed for Symantec Encryption Desktop.  While we have the file share encryption, we wish to email these (and we are not licensed for the email encryption).  Is there a simple way (like gpg) to create a group or a file containing lists that can be used to encrypt files so that several users' keys are automatically added?  I have confirmed that group keys created with our PGP Server cannot be added using the zip encryption processes.

You can achieve a similar result using Group Keys:

http://www.symantec.com/docs/HOWTO61299

Group Key with Fileshare encryption will not work reliably with email. You could try and blacklist Outlook.exe and Explorer.exe but there are still ways around it and the file could end up decrypted in transit to email.

My recommendation would be using PGP zip functionality with a passphrase (you can assign a passphrase to a protected zip). Or you can create a single shared key with multiple subkeys underneath of it for each of the users' email addresses and encrypt to that as well.

Does that help?