Re: List of Full Disc Encryption products

[Ow Mun Heng <Ow.Mun.Heng () wdc com>]

On Wed, 2006-07-05 at 22:55 -0400, Eric Furman wrote:
> On Wed, 5 Jul 2006 09:04:34 -0700, "Saqib Ali" <docbook.xml () gmail com>
> said:
> > With recent data thefts and government mandates, the importance of
> > full disc encryption is being realized. Encrypting individual files or
> > storing data in encrypted vaults does NOT meet the security
> > requirements anymore. Corporation and Government institution want the
> > whole HDD to be encrypted including the temporary files and swap

> Given physical access to a machine, even with full disk encryption,
> I do not trust that the data cannot be retrieved somehow.

Well, given the "right" amount of determination and unlimited funds, It
will be possible.
(What with today's harnessing power of the Internet and connected Zombie
PCs?)

> Disk encryption is *not* mature technology, no matter what
> some vendor might tell you. It puts your data at risk and gives
> you a false sense of security.

My only worry is, if 1 bit is screwed in the encryption, then
potentially you are as well. (be it due to bad Ram/Bad Power Supply/Bad
Coffee Spill/Bad Head)

Unless of course you run on ZFS On OpenSolaris/Solaris(tm) or a *nix
near you soon.
http://blogs.sun.com/roller/page/elowe?entry=zfs_saves_the_day_ta



---------------------------------------------------------------------------
This list is sponsored by: SensePost

Hacking, like any art, will take years of dedicated study and  
practice to master. We can't teach you to hack. But we can teach you  
what we've learned so far. Our courses are honest, real, technical  
and practical. SensePost willl be at Black Hat Vegas in July. To see  
what we're about, visit us at: 

http://www.sensepost.com/training.html
---------------------------------------------------------------------------