ePGP extension for mobile
Olav Seyfarth
olav at enigmail.net
Thu Jan 2 16:04:14 CET 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Hi Edwin,
IN SHORT
To your question: I don't think there is a "mobile solution" for ePGP available.
LONG ANSWER
I wasn't aware that you referred to a product. I interpreted "Enterprise PGP" as
(any) enterpsise-grade OpenPGP-Implemenation. I apologize for that confusion.
While I see the benefit of centralized PGP implementations, I personally would
not use epgp.org any more since it seems to be abandoned: the last build is from
April 2007 - almost 7 years old. No (security relevant) bugs found since then?
I don't know the product. I see no mail client integration in the screenshots,
so I assume it works similar to http://www.symantec.com/gateway-email-encryption
and http://www.zertificon.com/produkte/z1-securemail-gateway/ .
In security gateways, messages get signed/verified/en-/decrypted on the server.
Thus, messages behind that gateway (in the 'local network') travel unprotected.
(Usual transport layer security such as TLS should be applied though.)
<GnuPG-list-off-topic>
Additional thoughts/ideas:
To access Mail from mobile devices, one way would be to have a VPN connection
to the mail server /behind/ the security gateway, leaving you with unencrypted
messages on the phones. You might use a special app that uses phone-independent
protected storage (such as R2Mail2), or put yor company mail app inside some
secured container (such as Good for Enterprise).
Or you might set up additional key pairs for each mobile device and push all
incoming messages to special (even publicly available) 'mobile devices
accounts'. You'd have to provision the corresponding key pair to each phone
and may use any (unprotected) mail app.
</GnuPG-list-off-topic>
Olav
- --
The Enigmail Project - OpenPGP Email Security For Mozilla Applications
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)
Comment: Dies ist eine elektronische Signatur - http://www.enigmail.net/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=9ofq
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list