Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.
Encryption Blog
Showing posts in English
Tim_Matthews | 09 Dec 2010 | 14 comments

A U.S. Army intelligence specialist? Walking out with confidential documents on a CD? Impossible.

When I first heard about the exposure of hundreds of diplomatic memos, I was anticipating a sophisticated cloak and dagger tale. But Pfc. Manning walked out the door with a bogus Lady Gaga CD-RW filled with government secrets. While my initial reaction was that this never should have happened, I can see where the dual priorities of a worker-friendly environment and the mission-critical imperative to share information quickly could have led to this situation. The good news is that there is a straightforward regimen to help stop these kinds of risks.

1) Install Device Control

Device control, as its name suggests, controls what devices can be used on a given computer. So if you want to disallow CD burning by a government security analyst with access to secret documents...

Joel Boyd | 30 Sep 2014 | 7 comments

Today, Symantec is proud to announce the availability of our newly consolidated endpoint encryption solution, Symantec Endpoint Encryption v11. This solution blends best-of-breed technologies from our PGP and GuardianEdge acquisitions into a single console that includes strong disk and removable media encryption along with out-of-the-box reporting and enterprise-scale management. Symantec Endpoint Encryption 11 includes the following key features:

  • Built PGP Strong: High performing, strong encryption, built with PGP Hybrid Cryptographic Optimizer (HCO) technology and leveraging AES-NI hardware optimization for even faster encryption speeds
  • Robust Reporting: Administrators can take advantage of out-of-the-box compliance reports or customize their own reports to help ease the burden of proof to auditors and key stakeholders
  • Active Directory...
R Freeman | 06 Jun 2014 | 6 comments

With the recent announcement ( that TrueCrypt is no longer supported and may contain security issues, we in the Symantec Encryption group wanted to reach out to the community and help provide an alternative option for multi-platform drive encryption. On April 14, 2014 TrueCrypt completed a security audit ( and soon thereafter the project was shut down. While there has been great interest in the open source community to continue its support, we believe our Symantec Drive Encryption product powered by PGP technology is the best commercial solution with enterprise class support available today.

Some of the most popular methods of using TrueCrypt is creating an encrypted virtual disk shared in the cloud and protecting an external drive. We have provided a couple of articles below to demonstrate...

Kelvin_Kwan | 17 Sep 2013 | 13 comments

Symantec Encryption Releases 3.3.1/10.3.1
In this release, we support Windows 8, increase our Linux platform support, and as always improve security whenever appropriate.  Here’s a summary of what’s new:

  • Support Windows 8 Pro and Enterprise editions 32- and 64-bit versions, for Symantec Drive Encryption both BIOS and UEFI systems (only 64-bit for UEFI), Desktop Email Encryption, File Share Encryption, and Encryption Desktop utilities (PGP Virtual Disk, ZIP, and Shredder)
  • Desktop Email Encryption compatibility with Microsoft Outlook 2013, both 32- and 64-bit versions
  • Desktop Email Encryption compatibility with Microsoft Office 365 Cloud Server when using a supported email client
  • Mac OS X 10.8.3 and 10.8.4 support for Symantec Drive Encryption and Symantec Desktop Email Encryption
  • Symantec Drive Encryption support for Linux.  This now includes Red Hat Enterprise 5.9, 6.3, and 6.4 (32- and...
Kelvin_Kwan | 10 Jun 2013 | 1 comment

You Have Choices
On July 1, 2013, Symantec will officially announce that all customers with active maintenance for Symantec Endpoint Encryption Full Disk Edition (SEE FDE) will automatically have their licenses migrated to our new FlexChoice Disk Encryption license.

Essentially, we are replacing the current SKU for SEE FDE with a new SKU.  This new SKU entitles customers with the ability to choose which disk encryption product you wish to use. You can simply continue to use your SEE FDE product, or you can use the Symantec Drive Encryption, Powered by PGP Technology (SDE) product.  Or, you can use a combination of the two.  

We are NOT discontinuing/end-of-life’ing SEE FDE. I cannot emphasize this enough.  The SEE FDE product will continue to be supported and available for purchase.  We simply are offering more flexibility to our customers to choose whichever product they wish to use for...

Kelvin_Kwan | 28 Jan 2013 | 0 comments

In the past, it was fairly easy to keep corporate data protected by keeping it within an established perimeter—protected by established access controls and passwords.  That model has been blown apart as iPhone, iPad and other smartphones and tablets have taken over. Add to that the accessibility and usability of file sharing services like Dropbox and you can see why this transformation has information security managers concerned. These are not trends that organizations can deal with by saying “no.”  They urgently need solutions to help secure confidential data and limit access.

Today, we’re pleased to announce that Symantec’s new encryption solutions, powered by PGP Technology, are now shipping. With this Symantec Encryption release, Symantec leverages our encryption portfolio to ensure cloud data remains safe while keeping it accessible, and to protect confidential email for mobile.

Here’s a look at what’s new....

Kelvin_Kwan | 20 Dec 2012 | 4 comments

Folks, the holidays are almost once again upon us.  I sit here today trying to clear off my deliverables before I go on vacation.  But you know what? The year simply would not be complete without having to respond to yet another claim of a 3rd party tool being able to decrypt/access a system encrypted by PGP Whole Disk Encryption.

So Here We Go Again…
This morning, I was made aware of a claim made by ElcomSoft that their product could decrypt PGP containers (as well as other Full Disk Encryption competitors).  After reading through their blog and discussing my thoughts with the Symantec Encryption Engineering team, we have come to the conclusion that this claim is false!  There’s truly nothing to see here. 

The Weakness is NOT the Crypto Containers
I would...

phlphrrs | 18 Dec 2012 | 3 comments

There's a growing buzz in the industry about "who" should be responsible for encryption in the cloud from a user perspective.  As usual, the technology to do this is not the hard part – crypto is crypto is crypto, etc.  It's really more of a privacy and legal issue; privacy from the perspective of preventing others from seeing your stuff in the cloud and legal from the perspective of who has control over that data that is secured in the cloud.  
I think we all get the idea of privacy of our data in the cloud.  For example, if you put your personal financial data in the cloud to either be stored and/or used by an application, you want to make sure the data is secure.  If it's just storage, then you can personally encrypt the data before you store it in the cloud using encryption solutions like PGP.  If you're lucky enough to have a cloud provider that encrypts it for you, but gives you complete...

kkriese | 31 Oct 2012 | 3 comments

Today it is common for projects to be completed not by an individual, but a team (including to create this blog post).  To allow for improved productivity and collaboration, people use cloud-based storage to share files quickly and easily.  A counterpoint to the desire to share is the need to protect confidential information from being accessed inappropriately and leaking sensitive data.

The need for a secure collaboration solution drove the Symantec Encryption team to develop an enhancement for our Symantec™ File Share Encryption, Powered by PGP Technology software.  The enhancement offers:

  • automatic encryption of files on managed Windows machines that are stored on Dropbox
  • seamless access to encrypted files on Windows machines and iOS devices
  • centralized management for Dropbox Cloud Encryption Policies via Symantec™ Encryption Management Server (SEMS)

Encrypting files before they are uploaded to the...

Joel Boyd | 31 Oct 2012 | 1 comment

Stuck at the DMV?  Reply to some email.  Waiting to get your car washed?  Review an upcoming press release.  Stuck in traffic?  Edit the monthly sales forecast - send it back.  At the airport?  You get the point. 

(Dear California Highway Patrol Officer, I would never text and drive, I swear… honestly, please stop staring at me, okay, okay, I’m putting it down.)

Most people don’t even think twice about doing work wherever they are thanks to the vast array of mobile devices on the market.  What’s scary is how comfortable we are throwing sensitive data around and storing it on unsecure devices without even a thought of whether or not it’s safe to do so.  So… how does an organization enable their workforce to continue the working experience they’ve grown used to but have the peace of mind that they’re not going to end up on some news wire explaining how they lost...