Got news for all of us PGP customers: Because Symantec is too lazy and sucks to much to do the job we pay them to, they will be discontinuing what little TPM features they have. : http://www.symantec.com/business/support/index?page=content&id=TECH196789&actp=search&viewlocale=en_US&searchid=1348761093295
See the note in the grey box towards the bottom? The feature to encrypt to a TPM has been discontinued and will not be further developed. The option to encrypt to a TPM will be removed in one of the future releases.
What a bunch of lazy jerks!!! I just renewed PGP and got the newest update and purchsed tech support (which I am pissed that I even had to pay for). The dude on the phone, a nice kid who called me from Poland of all places (beats India, eh?), told me that
we are going to move away from TPM and advise to use Single Sign On instead. One the possible risks with TPM is that in case of a disk failure, when normally you would slave the drive to another PGP Desktop system to decrypt or recover the drive, you would not be able to do that when using TPM.
My response is, yeah, that's the whole god damn point for using TPM to begin with!!!! A password only provides one level of protection. TPM provides an additional level. I pay extra to have a TPM on my computer and I know the risks in using it. Thus, I want the additional protection it offers.
Why can Microsoft's Bit Locker work with TPM on EVERY SINGLE COMPUTER under the sun when PGP cannot? Plus, Bit Locker is free!!!!!! It comes with my Win7 Ultimate!!!!!
I have made repeated complaints before on this forum about the failure of PGP to work with TPM (https://www-secure.symantec.com/connect/forums/pgp-tpm-essential-security AND https://www-secure.symantec.com/connect/forums/wde-wont-work-my-tpm ). After getting the run around here from supposed 'experts', I now know the reason why. PGP's TPM would only work on computers running WinXP. Even if your machine was on their hardware list, if it wasn't running WinXP, you'd get no TPM. No way, Jose. No soup for you!
Because the TPM uses its own internal firmware and logic circuits for processing instructions, it does not rely upon the operating system and is not exposed to external software vulnerabilities. Thus, TPM provides you with more security then you would have with just PGP by itself.
Riddle me this, Batman: Since Bit Locker is FIPS 140-2 compliant, since it will work with TPM on ANY computer that you have that runs Win7, and since Bit Locker is FREE, why should I buy PGP? Why should any of us buy PGP? Why am I spending $150 per machine in my organization that has around 200 plus computers to get a product that does not fully work??????????????????
Why, why, why, why??????
And why can't PGP be made to work with TPM in Win7 and not only just with WinXP??
Any of you guys have any answers or care to weight in? I am certain that since this post is an angry post directed at PGP the admins will probably delete it since they don't want any bad PR. But hopefully someone will answer.