Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Fwd: Whole disk encryption

from [Kurt Buff] Network Security [Permanent Link]
Subject: Fwd: Whole disk encryption
Date: Wed, 30 Aug 2006 11:35:18 -0700 
Nuts.

Forgot to include the list on this. Sorry.

Kurt

---------- Forwarded message ----------
From: Kurt Buff <kurt.buff@gmail.com>
Date: Aug 30, 2006 11:32 AM
Subject: Re: Whole disk encryption
To: Saqib Ali <docbook.xml@gmail.com>


On 8/30/06, Saqib Ali <docbook.xml@gmail.com> wrote: 
> One way would be to give them only standard user rights to the host
> OS, no ability to install programs, and rights only to unlock the
> partition with the VM on it and to run that VM.

If you are going to do that, I am not sure what is the added benefit
of the VM. In that case might as well use full-disc-encryption on the
physical hardware.


I think the benefits are several-fold - instruct me if you differ, please:

1) cheaper to retrofit to existing hardware

2) cheaper to implement on new hardware with low-cost or free VM
software, like Xen (or QEMU on *nix boxen)

3) achieve benefits of both file/directory encryption and whole-disk encryption


It does cost some user annoyance with having to sign in, launch the VM
and then sign in again, but it might well be worth it for the benefits
involved.
Kurt

---------------------------------------------------------------------------
---------------------------------------------------------------------------

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Whole disk encryption, Kurt Buff
Next by Date:  RE: Whole disk encryption, Galin, Matt (THIP, Corp)
Previous by Thread:  Re: Whole disk encryption, Saqib Ali
Next by Thread:  Whole disk encryption, andrew . probert
Indexes:  [Date] [Thread] [Top] [All Lists]