PGP NetShare locks down shared folders and files
Version 9.6 has strong encryption, but works best in tandem with PGP Universal ServerFollow @rogeragrimes
Newly assigned users are not notified of their involvement in the protect share, and they must also have PGP NetShare installed to seamlessly access the protected files. Users without PGP NetShare can copy files into protected folders, but those files are not encrypted until an authorized user modifies the file or re-encrypts the folder.
PGP-related encryption information is stored in the protected file’s header and/or within a hidden PGP file within the protected folder. The wizard prompts the user to select a Signer when encrypting a folder; the Signer's key is used to protect the configuration information for the folder.
Click for larger view.
The encryption/decryption performance was average to slightly slower than other products I've tested, including Microsoft’s EFS (Encrypting File System), OpenPGP, TrueCrypt, and DataGuard. Encryption speed was average, but decryption speed lagged when large remote folders were decrypted in a single action. As suggested by PGP, performance increased if the PGP folder icons feature (which gives a visual indication of what folders are protected) was disabled. With single files, the encryption/decryption process was almost unnoticeable either way.
Any small performance trade-offs are offset, however, by NetShare's solid encryption and particularly useful GUI. The GUI was invisible most of the time, but user wizards popped up when appropriate. After encryption, I searched for plain-text remnants that might have been left behind accidentally on disk and in network traffic. PGP was flawless.
Another nice behind-the-scenes feature is that files do not have to be re-encrypted when the list of authorized users is modified. Some encryption products require that previously protected content be re-encrypted to ensure an encryption orphan event does not occur. PGP NetShare simply updates the configuration information protecting the file.
Additional useful components in NetShare include: PGP Virtual Disk Volumes to create virtual encrypted disk volumes; PGP Zip to create encrypted, compressed, portable archives; PGP Self-Decrypting Archives to allow encrypted folders and folders to be transported and decrypted on computers without PGP; PGP Shredder for secure file wiping; and a command-line tool, pgpnetshare.exe, that is useful for scripting automation.
Small touches here and there, such as indicative folder icons, end-user wizards, and readable help make this NetShare tool especially friendly. On its own, it's t's a solid encryption product and should help secure shared files and folders.
However, most of NetShare's enterprise functionality is provided by PGP Universal Server. For example, you won't be able to share keys across media sources without Universal Server, and Universal Server also adds enterprise management, easy key archival, directory service enumeration, granular controls, and policy management. Consequently, I recommend looking at NetShare as an add-on product to Universal Server, rather than for stand-alone use.