Date Posted: April 8, 2009
Tab navigation
- 1. What pre-requisite files do I have to download to use Policy-Driven File Encryption Explorer Based on OpenPGP for Secure Storage Solutions? Where do I have to place them?
- 2. Does the utility work with Sun JRE?
- 3. How can I use Policy-Driven File Encryption Explorer Based on OpenPGP for Secure Storage Solutions?
- 4. I've heard of information security objectives called Privacy, Authentication, Integrity and Non-repudiation (PAIN). Can I achieve these objectives using this tool?
- 5. How should I get started?
- 6. Does the utility provide key management?
- 7. How can I create the keys in order to use the utility?
- 8. How can I get the utility to make use of my existing keys?
- 9. Is there a default policy? If so, what is it?
- 10. If I select to secure a directory, does it get recursively encrypted and signed?
- 11. After secure operation, what will happen to the original file?
- 12. How can I share a file, securely, with another user?
- 13. I’m working over the network. How can I ensure higher security?
- 14. During batch encryption, what will happen if a file satisfies more than one policy?
- 15. Can I search files with specific keywords and have them secured?
- 15. Q. What will happen if I double-click a file inside the utility?
- 16. Can the file secured with this utility be decrypted with any other software based on PGP RFC 2440/4880?
- 17. Can I get the reports in Microsoft Excel format?
- 18. I’m seeing an executable by name “Restore.bat”. What is this for?
- 19. What are the limitations of Policy-Driven File Encryption Explorer Based on OpenPGP for Secure Storage Solutions?
- 20. What care should I to take while using the utility?
1. What pre-requisite files do I have to download to use Policy-Driven File Encryption Explorer Based on OpenPGP for Secure Storage Solutions? Where do I have to place them?
You will need the following files sets. For information on where to find these filesets and where to place them, please refer to the readme file included with the download.
- JRE 1.5.x (preferably IBM JRE 1.5.0.9 or later).
- Bouncy Castle OpenPGP/BCPG library.
- Bouncy Castle Provider library.
- Library to export statistics to Excel (Optional).
- Library for PDF files compatibility (Optional).
2. Does the utility work with Sun JRE?
Yes, it works wit SUN JRE version 5 or above. Additionally, you'll need to download the unrestricted policy files from http://java.sun.com/javase/downloads/index.jsp and place it in %JRE_HOME%/lib/security to use strict encryption algorithms.
3. How can I use Policy-Driven File Encryption Explorer Based on OpenPGP for Secure Storage Solutions?
The utility can be used to secure and decrypt files located on desktops or on remote locations. The secure operation can be governed by defining certain security policies. You can set such policies on the basis of file attributes such as size or extension. The utility also provides a facility for report generation. It helps storage administrators in decision making by providing system health reports and indicating whether or not the system is compliant with an organization’s security policy.
4. I've heard of information security objectives called Privacy, Authentication, Integrity and Non-repudiation (PAIN). Can I achieve these objectives using this tool?
Yes, you can achieve these objectives as the utility is based on OpenPGP standard.
5. How should I get started?
First, you'll need to generate an OpenPGP key pair for yourself, using any OpenPGP key generation utility like GnuPG. Once the key pair is generated, input that public/private keys in this utility. If the key pair is on another system, place it on the system where this utility is running and make sure that proper access control is in place for private keyring. Next, you can either go directly to the file secure operation or create policies for securing files.
6. Does the utility provide key management?
No, the utility does not provide key management. You may use key management functionality provided by other OpenPGP key management tools like GnuPG. However, importing of public keys is supported.
7. How can I create the keys in order to use the utility?
You can generate keys using any OpenPGP key management tool like GnuPG . These keys are then used by the utility.
8. How can I get the utility to make use of my existing keys?
When the utility starts, it will ask for the location of public and secret keyrings. You can point the utility to your keys here.
9. Is there a default policy? If so, what is it?
Yes, the utility provides a pre-defined default policy, as listed below:
Encryption Type: DES3 encryption
Sign File: Yes
Digest Type: SHA1 Algorithm
Applicable to File Types: All Files
Note: If the default policy is manually deleted, it can’t be recovered unless the utility is restored to factory settings.
10. If I select to secure a directory, does it get recursively encrypted and signed?
Yes, all the files present in the selected directory and its subdirectories will be secured.
11. After secure operation, what will happen to the original file?
While securing or defining the policy, you can choose to delete the original file. If you do, iit will be deleted only after the successful secure operation.
12. How can I share a file, securely, with another user?
To securely share a file, use “Secure File for Others” operation. In order to secure for other, user will require others’ public key. This public key can be imported into the public keyring using “Import Public Key” option. This utility works on the principal of OpenPGP.
13. I’m working over the network. How can I ensure higher security?
The tool can identify the file present in remote location. Youl'll need to specify the policy likewise.
14. During batch encryption, what will happen if a file satisfies more than one policy?
In such situations, you will be asked to prioritize the policy before the beginning of the batch encryption. And during encryption, the appropriate policy will be used as per the priority.
15. Can I search files with specific keywords and have them secured?
Yes, by using the “Confidential Keywords Search & Secure” option in Operations menu. Select the directory and provide the keyword(s) to be searched. If any keyword is found in any file, then user-specified security options will be applied to that file.
15. Q. What will happen if I double-click a file inside the utility?
If you double clicks an encrypted file, the utility will decrypt and verify the file before opening it. The utility will also prompt you before overwriting the original file.
16. Can the file secured with this utility be decrypted with any other software based on PGP RFC 2440/4880?
Yes.
17. Can I get the reports in Microsoft Excel format?
Yes, but make sure you have libraries for exporting the statistics to Microsoft Excel. For information on how to get this library, please refer to the readme file included in the download.
18. I’m seeing an executable by name “Restore.bat”. What is this for?
This executable can be used to bring the utility back to its factory settings. Basically, it will delete all the internal files and log files used by the tool along with the user-defined policies and preferences.
19. What are the limitations of Policy-Driven File Encryption Explorer Based on OpenPGP for Secure Storage Solutions?
Please refer to the Readme file included in the download to learn about the limitations of this utility.
20. What care should I to take while using the utility?
Make sure that the utility points to the proper keys and you have access to those keys. The private key or access to it should not be compromised. Note: The utility in its current version does NOT consider any impacts which might take place if the key is changed. For example, if a file is encrypted by the utility by a given user key and the key is changed or lost, then in that case file may be unrecoverable. There could be many similar manifestations.
