PGP Deployment Scenarios

PGP Universal can integrate with virtually any email infrastructure, including Mail Transport Application (MTA) email security appliances, to provide customers with a full gateway email security solution. PGP Universal can work in parallel with the email flow, touching only those messages that require encryption, decryption, and digital signatures.

This approach makes deployment simple and allows centralized management of all security policies, providing greater policy flexibility, including the ability to encrypt based on individual sender, recipient, domain, content, or format.

Click to Enlarge

Key Advantages

• Single, integrated solution - including encryption, digital signature, antivirus, antispam, content filtering solution, managed by a common security policy
• Simplified deployment - PGP Universal can be rapidly deployed with MTA gateways
• Simplified management - full range of email security solutions from a single console, reducing administrative burden, ensuring consistent policies, & streamlining change management
• Granular policy - allows MTA to transfer email for encryption based on sender, recipient, groups, format, & content; encrypt some, most, or all email driven by centrally managed MTA policy
• Industry-leading encryption - automatic, transparent, and non-disruptive; supports all encryption standards; delivers email securely even to recipients without an encryption solution
• No email quarantine - allows email administrators to identify, encrypt, & send confidential email rather than using quarantining or blocking that interrupts normal email flow
• Regulatory compliance - supports meeting security and privacy requirements of HIPAA, California SB 1386, & Sarbanes-Oxley

PGP Universal and Inbound and Outbound Email

Inbound email that is not encrypted flows through the MTA, receives normal filtering, and is delivered to recipients. Encrypted email is by policy passed to the PGP Universal Server for decryption and verification. Once decrypted, email is passed back to the MTA for further filtering and delivery.

Click to Enlarge

Outbound email is passed to the MTA routing for normal filtering. If policy requires an email to be secured, it is passed to PGP Universal for key management, key lookup, encryption, and digital signature. Once secured, it is passed back to the MTA for delivery.

Click to Enlarge

With an MTA, PGP Universal continues to offer the PGP Universal Web Messenger and PGP Universal Satellite features for securing mail to recipients without keys as in any other PGP Universal deployment.