Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Whole disk encryption

from [Jeffrey Wei] Network Security [Permanent Link]
Subject: RE: Whole disk encryption
Date: Fri, 25 Aug 2006 09:49:32 -0700 
To chime in on the encryption issue, how do people handle the added
problem that if an ADMIN who is in charge of the encryption keys
(backups and all) all of a sudden leaves the company?  The important
company data that the company was so diligently trying to protect is now
'protected' against the same company from accessing.  

There is the delicate balance here that a company may want to think
about here.  

1) Protect sensitive data at all costs?  Even when it can become
detriment to itself
or
2) Temper protection with multiple redundancies, including staff which
can be co$tly


Jeff

-----Original Message-----
From: Erik Anderson [mailto:eanders@pobox.com] 
Sent: Thursday, August 24, 2006 11:07 AM
To: focus-ms@securityfocus.com
Subject: RE: Whole disk encryption


-----Original Message-----
From: Sarah [mailto:sfelske@bgsu.edu]
Sent: Thursday, August 24, 2006 11:48 AM
To: focus-ms@securityfocus.com
Subject: Whole disk encryption



What is the consensus of the group on the use of whole disk encryption

in

an enterprise environment?


Why? You only need to protect the data not the whole OS.  It causes too
many
problems.  I don't recommend creating a headache for yourself when you
only
need to protect some data.

I recommend creating an encrypted partition and mounting an encrypted
file
system on that partition.

In addition there are plenty of 3rd party software packages out there
that
have encrypted filter drivers or will allow you to create an encrypted
virtual disk.  You use that disk just as any secondary disk.  The
encryption
becomes transparent to you.

Make sure to backup the keys somewhere or you will permanently loose
everything if something happens to the key.

Erik Anderson


------------------------------------------------------------------------
---
------------------------------------------------------------------------
---

---
[This E-mail scanned for Spam and Viruses by
http://www.innovationnetworks.ca]


---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Whole disk encryption, Mason, Samuel
Next by Date:  Re: Whole disk encryption, Saqib Ali
Previous by Thread:  RE: Whole disk encryption, Mason, Samuel
Next by Thread:  RE: Whole disk encryption, Bean, John (DSHS)
Indexes:  [Date] [Thread] [Top] [All Lists]