What is PGP NetShare?
The PGP NetShare product is a software tool that provides
multiple ways to protect and share your data.
Use PGP NetShare to:
y Let authorized users share protected files in a shared
space—such as a fileserver, shared folder, or USB
removable drive.
y Use part of your hard drive space as an encrypted virtual
disk volume with its own drive letter.
y Create secure, encrypted Zip archives.
y Put files and folders into a single encrypted, compressed
package that can be opened on Windows systems that do
not have PGP Desktop Email or PGP Desktop installed.
y Completely destroy files and folders so that even file
recovery software cannot recover them.
y Securely erase free space on your drives so that your
deleted data is truly unrecoverable.
Contents
y What is PGP NetShare? (page 1)
y New to PGP NetShare? (page 1)
y Understanding the Basics (page 1)
y What Am I Installing? (page 1)
y System Requirements (page 2)
y Installing PGP NetShare (page 2)
y Starting PGP NetShare (page 2)
y The PGP NetShare Main Screen (page 3)
y Using PGP NetShare (page 3)
y Creating PGP Virtual Disk Volumes (page 7, page 4)
y Creating a PGP Zip Archive (page 5)
y Using PGP Shred to Shred Files (page 5)
y Getting Assistance (page 6)
PGP NetShare
Quick Start Guide
Version 10.1
Note: A PGP NetShare license provides you with access
to a certain set of PGP NetShare features. Certain other
features of PGP NetShare may require a different license.
For more information, see the Licensing section of the
PGP Desktop User’s Guide.
y For deployment, management, and policy enforcement
information for PGP NetShare, see the PGP Universal
Server Administrator’s Guide.
Understanding the Basics
After installation, PGP NetShare prompts you to create a PGP
keypair. A keypair is the combination of a private key and a
public key.
y Keep your private key and its passphrase private, as the
name suggests. If someone gets your private key and its
passphrase, they can read your messages and
impersonate you to others. Your private key decrypts
incoming encrypted messages and signs outgoing
messages.
y Your public key you can give to everyone. It does not have
a passphrase. Your public key encrypts messages that
only your private key can decrypt and verifies your signed
messages.
Your keyring holds both your keypairs and the public keys of
others, which you use to send encrypted messages to them.
Click the PGP Keys Control Box to see the keys on your
keyring:
1. The icon for a PGP keypair has two keys, denoting the
private and the public key. Alice Cameron has a PGP
keypair in this illustration, for example.
2. The icons for the public keys of others have just one key.
Ming Pa’s public key, for example, has been added to the
keyring shown in this illustration.
New to PGP NetShare?
Use this step-by-step guide to get started. You will find that,
with PGP NetShare, protecting your data will be as easy as
turning a key in a lock.
y This Quick Start Guide helps you install PGP NetShare and
get started.
y The PGP Desktop User’s Guide provides more detailed
information on PGP NetShare. In it, you will learn what a
keypair is, why you might want to create one, how to
create one, and how to exchange keys with others so you
can encrypt your own data and share data securely with
others.
What Am I Installing?
PGP NetShare uses licensing to provide access to the features
you purchase. Depending on the license you have, some or all
of the PGP NetShare family of applications will be active.
This document contains instructions for viewing the features
1
activated by your license.
PGP NetShare is a member of the PGP Desktop family of
applications. You can use PGP NetShare to authorize users to
share protected files in a shared space, such as on a corporate
file server, in a shared folder, or on a removable media such as
a USB drive. The encrypted files in the Protected Folder
continue to appear as normal application files to the authorized
users; anyone else with physical access to the files can see
them but not use them.
Other components included with PGP NetShare are:
PGP Virtual Disk volumes uses part of your hard drive space
as an encrypted virtual disk volume with its own drive letter. A
PGP Virtual Disk is the perfect place for storing your sensitive
files; it is as if you have stored them in a safe. When the door
of the safe is open (when the volume is mounted), you can
change files stored in it, take files out of it, and move files into
it. Otherwise (when the volume is unmounted), all the data on
the volume is protected.
PGP Zip adds any combination of files and folders to an
encrypted, compressed, portable archive. PGP Desktop must
be installed on a system to create or open a PGP Zip archive.
PGP Zip is a tool for securely archiving your sensitive data,
whether you want to distribute it to others or back it up.
PGP Self-Decrypting Archives (SDAs)
folders into an encrypted, compressed package that can be
opened on Windows systems that do not have any PGP
software installed. SDAs are the perfect solution for securely
exchanging files with someone who does not have PGP
software installed.
PGP Shredder completely destroys files and folders so that
even file recovery software cannot recover them. Deleting a
file using the Windows Recycle Bin (on Windows systems) or
Trash (on Mac OS X systems) does not actually delete it; it sits
on your drive and eventually gets overwritten. Until then, it is
trivial for an attacker to recover that file. PGP Shredder, in
contrast, immediately overwrites files multiple times. This is
so effective that even sophisticated disk recovery software
cannot recover these files. This feature also completely wipes
free space on your drives so your deleted data is truly
unrecoverable.
Key Management manages PGP keys, both your keypairs and
the public keys of others. You use your private key to decrypt
messages sent to you encrypted to your public key and to
secure your PGP Virtual Disk volumes. You use public keys to
encrypt messages to others or to add users to PGP Virtual
Disk volumes.
— Puts files and
System Requirements
PGP NetShare can be installed on systems running the
following versions of Microsoft Windows operating systems:
y Windows XP Professional 32-bit (Service Pack 2 or 3),
Windows XP Professional 64-bit (Service Pack 2),
Windows XP Home Edition (Service Pack 2 or 3),
Microsoft Windows XP Tablet PC Edition 2005, Windows
Vista (all 32- and 64-bit editions, including Service Pack 1
and 2), Windows 7 (all 32- and 64-bit editions), Windows
Server 2003 (Service Pack 1 and 2).
Note: The above operating systems are supported only
when all of the latest hot fixes and security patches from
Microsoft have been applied.
Hardware Requirements
y 512 MB of RAM
y 64 MB hard disk space
Installing PGP NetShare
PGP Corporation recommends exiting all open applications
before you begin the install. The installation process requires a
system restart.
Note: If you are using PGP NetShare in a PGP Universal
Server-managed environment, your PGP NetShare installer
may be configured with specific features and/or settings.
¾ To install PGP NetShare
1. Locate the PGP NetShare installation program you
downloaded.
The installer program may have been distributed by your
PGP administrator using the Microsoft SMS deployment
tool.
2. Double-click the installer.
3. Follow the on-screen instructions.
4. Reboot your system when instructed.
5. When your system restarts, follow the on-screen
instructions to configure PGP NetShare.
Licensing
To see what features your license supports, open PGP
NetShare and select Help > License. Those features with a
checkmark are supported by the active license.
Starting PGP NetShare
To start PGP NetShare, use any of the following methods:
2
y Double-click the PGP Tray icon.
y Right-click the PGP Tray icon and then select
NetShare.
y From the Start menu, select Programs > PGP > PGP
NetShare.
Open PGP
The PGP NetShare Main Screen
The PGP NetShare application window is your main interface
to the product.
9
PGP Keys Find box. Use to search for keys on your
keyring. As you type text in this box, PGP NetShare
displays search results based on either name or email
address.
Each Control box expands to show available options, and
collapses to save space (only the Control Box’s banner
displays). Expand a Control Box by clicking its banner.
Using PGP NetShare
The PGP NetShare feature allows authorized users to share
protected files. You must first create a Protected Folder and
specify those users you want to be authorized to use the files.
1. Click Add Folder
Select Folder screen appears.
in the PGP NetShare Control Box. The
The PGP NetShare main screen includes:
1
The Menu bar. Gives you access to PGP NetShare
commands. The menus on the Menu bar change
depending on which Control box is selected.
2
The PGP Keys Control Box. Gives you control of PGP
keys.
3
The PGP Messaging Control Box. Gives you control
over PGP Messaging.
4
The PGP Zip Control Box. Gives you control of PGP
Zip, as well as the PGP Zip Assistant, which helps you
create new PGP Zip archives.
5
The PGP Disk Control Box. Gives you control of PGP
Disk.
6
The PGP Viewer Control Box. Gives you the ability to
decrypt, verify, and display messages outside the mail
stream.
7
The PGP NetShare Control Box. Gives you control of
PGP NetShare.
8
The PGP NetShare Work area. Displays information
and actions you can take for the selected Control box.
2. Click Browse, then select the folder you want to protect.
3. In the Description
Protected Folder you ware creating or leave blank to use
the default name.
4. Click Next. The Add Users screen appears.
5. To specify users of the files in the Protected Folder, click
the down arrow icon, select a user, then click Add
Remember to add yourself if you want to access the files
in the Protected Folder.
PGP NetShare does not notify users that they can access
the protected files; it is the responsibility of the creator of
a new Protected Folder to notify users.
6. To assign roles to each user, right-click the user's name
and select the role:
field, type a description for the
.
3
y Admin: Create only one Admin per PGP NetShare
protected folder. This role has full read/write rights to
the folder, can add and remove users, assign roles to
other users, and can promote another user to be the
Admin.
y Group Admin: Create as many Group Admins as you
need for each PGP NetShare protected folder. This
role has full read/write rights to the folder, can add
and remove users, and assign roles to other users.
y User: Create as many Users as you need for each
PGP NetShare protected folder. This role has full
read/write rights to the folder.
You can change a user's role at any time after the
protected folder is created. Click on the protected folder in
the PGP NetShare, and right-click the user's name to
change the role.
7. Click Next
8. Select one private key from the private keys on the local
keyring and enter the appropriate passphrase (if the
passphrase is not cached). This key will be used to secure
the PGP NetShare configuration information for the
Protected Folder and the files in it.
9. Click Next. The Progress screen appears. The files in the
specified Protected Folder are encrypted and the specified
users are authorized to use the files. If any files, such as
system files, were skipped, they are listed here.
10. Click Finish
. The Select Signer screen appears.
.
Creating PGP Virtual Disk Volumes
The PGP Virtual Disk Volumes feature uses part of your hard
drive space as an encrypted virtual disk volume with its own
drive letter. You can create additional users for a volume so
that people you authorize can also access the volume.
1. Click New Virtual Disk in the PGP Disk Control box.
2. Type a Name for the volume.
3. Specify a Disk File Location for the volume.
4. To specify your mount preferences, do the following::
y select a drive letter for the volume to Mount as.
y select Mount at Startup to have your new volume
mount automatically at startup.
y select Unmount when inactive for x mins to have
the volume automatically unmount when it has been
inactive for the specified number of minutes.
5. From Capacity, select Dynamic (resizeable) if you want
the volume to grow in size as you add files or Fixed size if
you want the volume to always remain the same size.
6. Specify a file system Format for the volume.
7. Specify an Encryption algorithm for the volume.
8. Click Add User Key to add users who authenticate using
public-key cryptography or click New Passphrase User to
add users who authenticate using passphrases.
9. Click Create.
Use the User Access section to control existing users of a
PGP Virtual Disk volume:
1. Click Add User Key to add users who authenticate using
public-key cryptography.
2. Click New Passphrase User to add users who
authenticate using passphrases.
3. Select a passphrase user, then click Change Passphrase
to change their passphrase.
4. Select a user, then click Make Admin to give the user
administrative rights.
5. Select a user, then click Delete to delete the user.
4
Creating a PGP Zip Archive
Refer to the appropriate section on the following pages for the
kind of PGP Zip archive you specified.
PGP Zip archives let you put any combination of files and
folders into a compressed, portable archive. There are four
kinds of PGP Zip archives:
y Recipient keys. Encrypts the archive to public keys. Only
the holder of the corresponding private keys can open the
archive. This is the most secure kind of PGP Zip archive.
Recipients must be using PGP software (for Windows or
Mac OS X).
y Passphrase. Encrypts the archive to a passphrase, which
must be communicated to the recipients. Recipients must
be using PGP software (for Windows or Mac OS X).
y PGP Self-Decrypting Archive. Encrypts the archive to a
passphrase. Recipients do not need to be using PGP
software to open it, but their computer must be running
Microsoft Windows. The passphrase must be
communicated to the recipients.
y Sign only. Signs the archive but does not encrypt it,
allowing you to prove you are the sender. Recipients must
be using PGP software (for Windows or Mac OS X) to
open and verify the archive.
The Passphrase and Sign only PGP Zip types are described in
detail in the PGP Desktop User’s Guide; they are described
briefly here.
1. Click New PGP Zip in the PGP Zip Control Box.
Recipient Keys
The Add User Keys screen appears.
1. Click Add and use the User Selection screen to select the
public keys of those persons who you want to be able to
open the archive. If you want to be able to open the
archive yourself, be sure to include your public key.
2. Click Next.
3. Choose a private key on the local system to use to sign
the archive.
4. Specify a name and a location for the archive. The default
name is the name of the first file or folder in the archive;
the default location is the location of the files/folders going
into the archive.
5. Click Next. The PGP Zip archive is created. The Finished
screen displays information about the new archive.
6. Click Finish.
Note: The Passphrase type of PGP Zip archive is very similar
to Recipient Keys, the difference being that a passphrase is
used to protect the archive instead of a key.
Note: The Sign only type of PGP Zip archive is similar to
Recipient Keys, the difference being that because the archive
is only signed, not encrypted, you do not select public keys.
2. Drag and drop the files/folders you want to be in the
archive or use the buttons to select them.
3. Select Send original files to PGP Shredder when
finished if you want the files/folders you put into the
archive to be shredded when the archive is created.
4. Click Next.
5. Select the desired kind of PGP Zip archive:
y Recipient keys
y Passphrase
y PGP Self-Decrypting Archive
y Sign only
6. Click Next.
Passphrase and Sign only are described in detail in the PGP
Desktop User’s Guide.
PGP Self-Decrypting Archive
The Create a passphrase screen appears.
1. Type a passphrase for the PGP Zip Self-Decrypting
Archive (SDA), then type it again to confirm it.
2. Click Next.
3. Choose a private key on the local system to use to sign
the archive.
4. Specify a name and a location for the archive. The default
name is the name of the first file or folder in the archive;
the default location is the location of the files/folders going
into the archive.
5. Click Next. The PGP SDA is created.
6. Click Finish.
Using PGP Shred to Shred Files
The PGP Shredder feature completely destroys files and
folders so that even sophisticated file recovery software
cannot recover them. While both the PGP Shredder icon and
the Windows Recycle Bin appear on your desktop, only PGP
Shredder immediately overwrites the files you specify so that
they are not recoverable.
You can shred files using any of the following methods:
y Using the PGP Shredder icon.
y Using the PGP toolbar.
y Using the PGP shortcut menu.
5
Shredding Files Using the PGP Shredder Icon
¾ To shred files using the PGP Shredder icon
1. On your Windows desktop, drag the files and folders you
want to shred into the PGP Shredder. A dialog box
appears, asking you to confirm you want to shred the
files.
2. Click Yes. The specified files and folders are shredded.
Shredding Files Using the PGP Toolbar
¾ To shred files using the PGP Toolbar
1. In the PGP NetShare main application window, select
Tools > Shred Files. The Open dialog box is displayed.
2. Select the files on your system you want to shred, then
click Open. A confirmation dialog box is displayed, asking
you to confirm that you want to shred (secure delete) the
listed files and/or folders.
3. Click Yes. The files are securely deleted from your
system.
Shredding Files Using the PGP Shortcut Menu
¾ To shred files in Windows Explorer
1. In Windows Explorer, right-click files/folders you want to
shred. A confirmation dialog box is displayed, asking you
to confirm that you want to shred (secure delete) the
listed files and/or folders.
2. Click Yes. The files are securely deleted from your
system.
Note: If you do not use the PGP Shredder feature often, you
can remove the PGP Shredder icon from your desktop via PGP
Options. To do this, select Tools > Options, select the Disk
tab, deselect the
option, and then click OK.
Note: You can also use PGP Options to control the number of
passes made when shredding (more passes is more secure
but takes longer), whether files in the Windows Recycle Bin
should be shredded when you empty it, and whether the
warning dialog box is displayed when you shred.
Place PGP Shredder icon on the desktop
Shredding Free Space
The PGP Shred Free Space feature completely shreds free
space on your drives so that your deleted data is truly
unrecoverable. Keep in mind that “free space” is actually a
misnomer. What PGP Shred Free Space does is overwrite the
portions of your hard drive that Windows believes to be
empty; in fact, that space could be empty or it could be holding
files Windows told you were deleted.
When you put files into the Windows Recycle Bin and empty
it, the files are not really deleted; Windows just acts like there
is nothing there and eventually overwrites the files. Until those
files are overwritten, they are easy for an attacker to recover.
PGP Shred Free Space overwrites this “free space” so that
even disk recovery software cannot get those files back.
¾ To shred free space on your disks
1. Open PGP NetShare.
2. Select Tools > PGP Shred Free Space.
3. On the Introduction screen, read the information, then
click Next.
4. On the Gathering Information screen, in the Shred drive
field, select the disk or volume you want shredded and
the number of passes you want PGP Shred Free Space to
perform.
The recommended guidelines for passes are:
y 3 passes for personal use.
y 10 passes for commercial use.
y 18 passes for military use.
y 26 passes for maximum security.
5. Choose whether to Wipe internal NTFS data structures
(not available on all systems), then click
This option shreds small (less than 1K) files in internal data
structures that might otherwise not get shredded.
6. On the Perform Shred screen, click Begin Shred.
Note: Click Schedule to schedule a shred of your free
space instead of doing it now. The Windows Task
Scheduler must be installed on your system.
The length of the shred session depends on the number
of passes you specified, the speed of the processor, how
many other applications are running, and so on.
7. When the shred session is complete, click Next.
8. On the Completing screen, click Finish.
Next.
Getting Assistance
Contact Information
Contacting Technical Support
y To learn about PGP support options and how to contact
PGP Technical Support, please visit the PGP Corporation
Support Home Page (
y To access the PGP Support Knowledge Base or request
PGP Technical Support, please visit PGP Support Portal
Web Site (
https://support.pgp.com). Note that you may
https://support.pgp.com).
6
access portions of the PGP Support Knowledge Base
without a support agreement; however, you must
have a valid support agreement to request Technical
Support.
y To access the PGP Support forums, please visit PGP
Support (
community support forums hosted by PGP Corporation.
http://forum.pgp.com). These are user
Contacting Customer Service
y For help with orders, downloads, and licensing, please
visit PGP Corporation Customer Service
https://pgp.custhelp.com/app/cshome).
(
Contacting Other Departments
y For any other contacts at PGP Corporation, please visit the
PGP Contacts Page
http://www.pgp.com/about_pgp_corporation/contact/inde
(
x.html).
y For general information about PGP Corporation, please
visit the PGP Web Site (
http://www.pgp.com).
Available Documentation
Prior to installation, complete Product Documentation is
available through the PGP Corporation Support Portal
https://support.pgp.com).
(
Unless otherwise noted, online help is installed and is available
within the PGP NetShare product. Release notes are also
available, which may have last-minute information not found in
the product documentation. The users guide and quick start
guides, provided as Adobe Acrobat PDF files, are available on
the Documentation (
section on the PGP Support Portal.
Once PGP NetShare is released, additional information
regarding the product is entered into the online Knowledge
Base available on the PGP Support Portal Web Site
https://support.pgp.com).
(
https://pgp.custhelp.com/app/docs)
Copyright and Trademarks
Copyright (c) 1991-2010 PGP Corporation. All Rights Reserved.
“PGP”, “Pretty Good Privacy”, and the PGP logo are
registered trademarks and PGP Universal is a trademark of
PGP Corporation in the U.S. and other countries. All other
registered and unregistered trademarks in this document are
the sole property of their respective owners.
7
Loading...