RE: Laptop - Full Disk Encryption?

["JD Brown" <jd.brown () smallenoughtocare com>]

What we implemented for our laptops was Pointsec's whole disk encryption
coupled with the RSA SecurID instead of letting them use passwords.  It
is completely transparent to the user except for the added step of
Pointsec's pre-boot authentication.  It is fairly easy to recover and it
has a remote help feature.

JD

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of fac51
Sent: Wednesday, October 17, 2007 05:05
To: security-basics () securityfocus com
Subject: Laptop - Full Disk Encryption?

Does anyone know of a good full disk encryption product.
It will be used for senior management so it must be easy to use and
recover if the password is forgotten.

Assumptions are that laptop information security is strongest if data is
not saved locally but an audit has revealed otherwise.

Technical Controls (proposed)

1. BIOS password. (currently not enforced)
2. Full disk or partition encryption. (currently not enforced)

Is there anything else I should take into account?

I have read that encryption is useless if the password that is used is
not strong is this true?


Thanks in advance for any help, greatly appreciated.

S


 
________________________________________________________________________
____________
Don't let your dream ride pass you by. Make it a reality with Yahoo!
Autos.
http://autos.yahoo.com/index.html
 



-----------------------------------------------------
This e-mail is confidential and may well be legally
privileged. If you have received it in error, you are
on notice of its status. Please notify us immediately
by reply e-mail and then delete this message from 
your system. Please do not copy it or use it for any
purposes, or disclose its contents to any other
person. To do so could violate state and federal
privacy laws. Thank you for your cooperation.