Feeds

NAI belatedly joins OpenPGP Alliance

Phil Zimmermann writes to thank The Reg

  • alert
  • submit to reddit

Protecting users from Firesheep and other Sidejacking attacks with SSL

Network Associates (NAI) has joined an alliance designed to promote interoperability between email encryption packages after a Register article pointed out its conspicuous absence from the group.

The move means that the OpenPGP Alliance, created by Phil Zimmermann, now includes PGP Security, the NAI division that is the main supplier of PGP-based encryption products for business.

Zimmermann wrote to The Register to thank us for whatever help we might have provided in encouraging NAI to get involved in the group's worthwhile efforts.

Phil Zimmermann's letter said:

"Your article seems to have alerted NAI that they should get moving to join the OpenPGP Alliance. I had invited them to join a week before our press release, by talking to my friend Mark McArdle, PGP Security's vice president of engineering.

"Mark said they would like to join, but he had to get it approved through all the layers of company management. A week went by, perhaps because of people travelling, or on holiday, or something. The other alliance members wanted to get our press release out soon, so we had to go without NAI's official response to our invitation, leaving them out of the initial launch.

"After seeing your article, they called me and asked if they could join, and now they are in the alliance. You can see an updated member list on our web page at OpenPGP.org"

OpenPGP is a non-proprietary protocol for encrypting email using public key cryptography based on the popular encryption program, PGP, which was first created by Zimmermann. The protocol, as defined by IETF RFC 2440, is essential an alternative standard to S/MIME (Secure Multi-Purpose Internet Mail Extensions), which is supported in the latest version of browsers from Microsoft and Netscape.

The OpenPGP Alliance was formed to help ensure compatibility among encrypted email systems, and to help extend the OpenPGP format to other non-email applications that can benefit from privacy protection. It is organising interoperability testing, in co-operation with the IETF, at Qualcomm's San Diego facilities this summer. ®

External Links

OpenPGP Alliance Formed to Advance Standard in PKI Based Software
OpenPGP Alliance

Related Stories

OpenPGP Alliance omits PGP Security
PGP creator Zimmermann leaves Network Associates
Cyber Rights Hush up new RIP powers

The next step in data security

More from The Register

next story
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
Infosec geniuses hack a Canon PRINTER and install DOOM
Internet of Stuff securo-cockups strike yet again
THREE QUARTERS of Android mobes open to web page spy bug
Metasploit module gobbles KitKat SOP slop
'Speargun' program is fantasy, says cable operator
We just might notice if you cut our cables
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
Greater dev access to iOS 8 will put us AT RISK from HACKERS
Knocking holes in Apple's walled garden could backfire, says securo-chap
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.