Network Security: Detailed info on Re: Why isn't full disk encryption from manufactures a slam dunk?

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Security-Basics

[Top] [All Lists]

Re: Why isn't full disk encryption from manufactures a slam dunk?

from [James Fryman] Network Security

[Permanent Link]

Subject:	Re: Why isn't full disk encryption from manufactures a slam dunk?
Date:	Thu, 13 Sep 2007 07:56:51 -0500

dan@recyclepcs.com wrote:

This would seem to be a security no brainer.  What are its limitations?


To add on what has already been pointed out - Crypto changes. Today,
<insert favorite strength of AES> or whatever flavor of crypto you use
is practically secure for the necessary lifetime or duration of the data
being protected. That could change tomorrow, and lock-in from the
particular vendor on the type of crypto in hardware is going to prevent
upgrades if the algorithm is found with a flaw, or brute-force attacks
increase with such vigor as to find a way around the cryptography.
(read: quantum computing). It is a long shot, but needs to be considered
in the scope of the risk assessment for choosing a hardware or software
based FDE solution.

My $0.02 in the pot.

Hope you find the answers you are looking for.

-James

-- 
-------------
James Fryman

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Why isn't full disk encryption from manufactures a slam dunk?, dan Re: Why isn't full disk encryption from manufactures a slam dunk?, gjgowey Re: Why isn't full disk encryption from manufactures a slam dunk?, Kurt Buff Re: Why isn't full disk encryption from manufactures a slam dunk?, James Fryman <= Re: Why isn't full disk encryption from manufactures a slam dunk?, Nick Owen Re: Why isn't full disk encryption from manufactures a slam dunk?, Daniel Anderson Re: Why isn't full disk encryption from manufactures a slam dunk?, Michael Painter FW: Why isn't full disk encryption from manufactures a slam dunk?, Craig Wright Re: Why isn't full disk encryption from manufactures a slam dunk?, zenmasterbob123 Re: Re: Why isn't full disk encryption from manufactures a slam dunk?, empfour Re: Re: Why isn't full disk encryption from manufactures a slam dunk?, Daniel Anderson Re: Re: Re: Why isn't full disk encryption from manufactures a slam dunk?, empfour Re: Re: Re: Why isn't full disk encryption from manufactures aslam dunk?, gjgowey Re: Re: Re: Why isn't full disk encryption from manufactures aslam dunk?, ganesh mahadevan

Previous by Date:	Re: Threat vector of running a service using a domain account, gjgowey
Next by Date:	Re: Threat vector of running a service using a domain account, James Fryman
Previous by Thread:	Re: Why isn't full disk encryption from manufactures a slam dunk?, Kurt Buff
Next by Thread:	Re: Why isn't full disk encryption from manufactures a slam dunk?, Nick Owen
Indexes:	[Date] [Thread] [Top] [All Lists]