Feeds

Zip file encryption compromise thrashed out

Windows archive love-in

  • alert
  • submit to reddit

The essential guide to IT transformation

Compression software companies PKWare and WinZip have agreed to make their rival approaches to encrypting zip files more compatible.

The latest beta of WinZip's software is able to read files wrapped up and encrypted using PKWare's PKZip. Meanwhile PKZip, the free reader application, will be able to open up files compressed and encrypted in WinZip's programme.

The agreement eases fears that the ubiquitous Zip standard could become fragmented by incompatible methods of encryption. Both companies have agreed to support the other's password-based decryption.

This is positive for interoperability but shouldn't be confused as an agreement on a single standard for secure zip.

PKWare's PKZip uses an RSA-based encryption algorithm but was allegedly slow in revealing the specs of its technology to WinZip. Because of this alleged delay WinZip implemented a cryptographic approach based on AES, the next generation US –government backed encryption standard.

These rival approaches meant that, prior to this week's agreement, compressed files encrypted with one application couldn't be opened by the other - irrespective of whether or not you knew the correct password. Compatibility has never been a problem for unencrypted files.

CBR reports that co-operation on interoperability between secure zip files between the two firms was kick-started by PKWare's new licensing program. This program, announced last October, offers free Secure ZIP licenses to competitors.

Both firms continue to describe the others approach as proprietary, so an agreement for a single standard on secure Zip still looks some way away. ®

Gartner critical capabilities for enterprise endpoint backup

More from The Register

next story
6 Obvious Reasons Why Facebook Will Ban This Article (Thank God)
Clampdown on clickbait ... and El Reg is OK with this
Mozilla's 'Tiles' ads debut in new Firefox nightlies
You can try turning them off and on again
No, thank you. I will not code for the Caliphate
Some assignments, even the Bongster decline must
Barnes & Noble: Swallow a Samsung Nook tablet, please ... pretty please
Novelslab finally on sale with ($199 - $20) price tag
Banking apps: Handy, can grab all your money... and RIDDLED with coding flaws
Yep, that one place you'd hoped you wouldn't find 'em
TROLL SLAYER Google grabs $1.3 MEEELLION in patent counter-suit
Chocolate Factory hits back at firm for suing customers
Primetime precrime? Minority Report TV series 'being developed'
I have to know. I have to find out what happened to my life
Netflix swallows yet another bitter pill, inks peering deal with TWC
Net neutrality crusader once again pays up for priority access
prev story

Whitepapers

Top 10 endpoint backup mistakes
Avoid the ten endpoint backup mistakes to ensure that your critical corporate data is protected and end user productivity is improved.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Backing up distributed data
Eliminating the redundant use of bandwidth and storage capacity and application consolidation in the modern data center.
The essential guide to IT transformation
ServiceNow discusses three IT transformations that can help CIOs automate IT services to transform IT and the enterprise
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.