Security Basics mailing list archives
Re: secure file handling
From: Atom Powers <apowers () digipen edu>
Date: Wed, 27 Jul 2005 12:06:13 -0700
Alejandro Flores wrote:
Depending on how sensitive your documents are, you may need a Document Control System (DCS) with Mandatory Access Controls (MAC). These work on the file system to allow or deny access to files based on a set of rules. Unlike standard file permissions, some MAC systems can prevent data from being copied to less sensitive locations. But they can be very complicated to manage. There are many, some very expensive, DCS for MS Windows and the web (Plone, for instance). Windows can't do MAC, but other systems (FreeBSD 5.3+ for example) can.Hello there, What's the best way to manage and store sensitive data (word documents, text files, pictures...)? I mean, if I have a file with some sensitivedata, and I need to manage it and add content, etc...
How can I manage it in a way that no one can 'recover' my files or 'swap' files createdby programs like word?
You probably can't, unless you have Mandatory Access Controls in place.
Is an Encrypted File System the answer to my question? :-)
Certainly not.Encrypted file systems, on MS Windows, will not prevent the data from being read or copied. And most uses of the data are unencrypted. MS Encrypted file systems will only protect your data if your disk drive is stolen; it will not protect your data while you are using your computer.
Regards, Alejandro Flores
Current thread:
- secure file handling Alejandro Flores (Jul 26)
- RE: secure file handling Adrian Floarea (Jul 29)
- Re: secure file handling Atom Powers (Jul 29)
- <Possible follow-ups>
- Re: secure file handling dave_boone007 (Jul 29)