Network Associates Gives Up Search for PGP Buyer 180
nakhla writes: "I came across this article which states that Network Associates has given up the search for a buyer for its PGP division. The company has laid off 18 workers, and plans to continue to maintain the product for one year. It's a good thing that there are still products like GnuPG and others out there for people who need cheap, reliable encryption."
Mixed feelings (Score:5, Informative)
I've got mixed feelings about this. On the one hand, PGP was revolutionary and is probably one of the main reasons encryption is as free and available today as it is. If Phil hadn't released that (at the expense of considerable suffering), I suspect that the governments of the world would have been able to clamp down on encryption big time, and all of us law abiding types would take it as an axiom that none of us really need anything like that, only terrorists do. It's sad to see the company that was carrying that torch give up on it. I fear this is just one more indication that personal encryption of e-mail and such isn't really going to catch on with the masses.
On the other hand, NAI's not been a perfect angel. Phil left them because of differences about releasing (if memory serves) source code-- not because Phil is an open source advocate per se, so much as for reasons of being able to verify the security. And, myself, I'm an open source geek and have been using GnuPG for quite some time as my encryption software of choice. There still is hope that GnuPG will be turned into something that can catch on with the masses (just like there's hope, however faint, that things like GNOME and KDE will catch on with the masses).
-Rob
Lots of products left allright, but easy to use? (Score:2, Informative)
/Pedro
Email Integration with GnuPG (Score:5, Informative)
Now:
For those of you lucky enough to be using MacOS X (go ahead a flame me - I've been using Unix for ten years, and MacOS X rox my sox), just grab a copy of GnuPG from Fink [sf.net] and install GnuPG.
After that, grab a copy of PGPMail [sente.ch] from Sente, and use the easy, one-drag install. It's still in beta, but it's damn nice integration.
For reference, I'm running MacOS X 10.1.3. When I send an email to someone whose public key is in my keyring, I just click the button "Encrypt" before I click send. Voila. When I receive something encrypted, I have the option of having it automatically decrypt, or I just click "decrypt" in the toolbar. Very nice.
Re:Mixed feelings (Score:3, Informative)
I use it quite a bit to sign emails and the interface is pretty clean, too.
Smartcard support (Score:4, Informative)
Re:High Profile Use Case (Score:3, Informative)
A good use case would be a major bennie, but I think you're coming at it from the wrong end. PGP isn't just used to encrypt/decrypt messages. The canonical four tasks:
Rather than looking for situations where PGP prevented someone from intercepting a communictation - often very difficult to know ever happened - I'd be looking for case studies in which someone tried to tamper with a message and was foiled because of the PGP signature, or tried to forge a message... you get the idea.
Re:Sad.. (Score:1, Informative)
Re:Email Integration with GnuPG (Score:2, Informative)
Check it out at http://www.cyrusoft.com/mulberry/ [cyrusoft.com]. It is payware, but it's a damn nice email client. Works on Windows, Mac, MacOS X, Linux, and, I believe, Solaris.
-c
Re:Sad.. (Score:2, Informative)
Re:Mixed feelings (Score:2, Informative)
It's beta, but if you use Outlook, it seems to do the job very nicely. If you go to the GPG page, there is also a link for another program that is a plug in for outlook express.
W
Biometrics are not revocable (Score:3, Informative)
With a passphrase-based system, by contrast, you can just change your passphrase as needed.
NAI didn't sell all of PGP (Score:5, Informative)
It all is a big shame too. The last version, 7.1, was cool. It was stable, had an IPSEC client that could talk to pretty much any VPN gateway out there in addition to creating peer to peer IPSEC tunnels with other PGP clients as well. A mini firewall / IDS rounded it out. Frankly, companies just aren't paranoid enough to require that level of encryption yet. And until that happens, no commercial product is likely to succeed in this arena.
NA made PGP into bloatware! (Score:4, Informative)
it comes with some nice extras such as a very nice firewall
And that is partly the reason nobody bought it.
PGP evolved into a nice e-mail encryption program. NA added so much crap to this (VPN that hardly worked, Firewall, hard drive encyption) they forgot there core market..... secure E-MAIL and convincing people that it was nessisary!
(In a corperate enviroment, people alredy have firewalls etc... NA just made PGP more complex)
I actually bought a version of PGP Personal Security 7.0.3
YTC !!!
NA never published the source code for version 7. That was the reason Phil Zimmerman left NA.
Version 6.5.8 could be downloaded [pgpi.org] as freeware and is every bit as compatable!
What about S/MIME (Score:1, Informative)
Use PGP CKT (Score:4, Informative)
PGP CKT, comes fully loaded with PGPDisk, and PGP4ICQ, and the plugins for Outlook/Outlook Express, I'm not sure about PGPNet, I don't use it.
NAI Privacy Policy (Score:3, Informative)
That doesn't look like much of a privacy policy to me. Hence the reason I didn't proceed.
Re:Encryption and the masses (Score:4, Informative)
Most people would happily use encryption if it happened automatically and painlessly. The current problems arise because PGP is not integrated and S/Mime frankly sucks, having an overly complicated UI, difficulty getting a key and is dog slow to boot.