Supported Operating Systems
- Windows 7 (all 32-bit and 64-bit editions)
- Windows Vista (all 32-bit and 64-bit versions)
- Windows Server 2003 (SP1)*
- Windows XP (SP1 or SP2)
- Windows XP Tablet PC Edition 2005 (keyboard required)
- Windows 2000 (SP4)
*Full disk encryption functionality is not supported on Windows 2000 Server or 2003 Server.
Localization
- English
- German
- Japanese
- Spanish
- French
Authentication Options
- OpenPGP RFC 4880 keys
- X.509 keys
Symmetric Key Algorithms
- AES (up to 256-bit keys)
- CAST
- TripleDES
- IDEA
- Twofish
Symmetric Key Algorithms - PGP Whole Disk Encryption
Symmetric Key Algorithms - PGP NetShare
- AES 256-bit keys in EME mode
Hashes
- SHA-2 (up to 512-bit hashes)
- SHA-1
- MD5
- RIPEMD-160
Public Key Algorithms
- Diffie-Hellman
- DSA (1024-bit keys only)
- RSA (up to 4096-bit keys)
Centralized Management Requirements
- PGP Universal Server 2.7 or higher (PGP Universal Server requires a dedicated server)
Two-Factor Authentication
Supported USB Tokens - PGP NetShare, PGP Virtual Disk, & PGP Zip
PGP Desktop Storage recognizes and works with the following:
- DoD Common Access Cards (CACs) with the ActivCard Gold 2.0 profile
- Athena Smart Card Solutions smart cards, including the ASEKey USB token
- AET SafeSign smart cards, including ASEKey 1.0
- Axalto (formerly Schlumberger) smart cards, including the Cryptoflex 32K
- SafeNet smart cards, including iKey 2032
- Aladdin smart cards, including eToken PRO USB 16K, 32K, and 64K
- GemPlus smart cards, including SafesITe and GemXpresso Pro, using GemSafe Libraries 4.2.0-015 (Gold)
PGP Desktop Storage also recognizes and works with smart cards from other vendors if the vendor includes a standards-based PKCS-11 library in its software drivers.
Supported Pre-Boot Authentication Smart Cards & USB Tokens
The following smart card readers are supported for communicating to a smart card at pre-boot time. These readers can be used with any supported removable smart card (it is not necessary to use the same brand of smart card and reader). Any CCID smart card reader is supported. The following readers have been tested by PGP Corporation:
- OMNIKEY CardMan 3121 USB for desktop systems
- OMNIKEY CardMan 6121 USB for mobile systems
- ActivIdentity USB 2.0 reader
- CyberJack smart card readers
- Reiner SCT CyberJack pinpad
- ASE smart card readers
- Athena ASEDrive IIIe USB reader
PGP Whole Disk Encryption supports the following smart cards for pre-boot authentication:
- ActiveIdentity ActivClientCAC cards, both 2005 and 2002 models
- Aladdin eToken 64K, 2048-bit RSA-capable*
- Aladdin eToken PRO USB Key 32K, 2048-bit RSA-capable1
- Aladdin eToken PRO without 2048-bit capability (older smart cards)1
- Athena ASEKey Crypto USB Token for Microsoft ILM2
- Athena ASECard Crypto Smart Card for Microsoft ILM2
- EMC RSA SecurID SID800 Token3
- Charismathics CryptoIdentity plug 'n' crypt Smart Card only stick
- S-Trust StarCOS smart card4
- Rainbow iKey 3000
1Other Aladdin eTokens, such as tokens with flash, should work provided they are APDU compatible with the supported tokens. OEM versions of Aladdin eTokens, such as those issued by VeriSign, should work provided they are APDU compatible with the supported tokens.
2The Athena tokens are supported only for credential storage.
3This token is supported only for credential storage. SecurID is not supported.
4S-Trust SECCOS cards are not supported.
