Security Basics mailing list archives
Re: failure notice
From: Michael Boman <michael.boman () gmail com>
Date: Fri, 2 Oct 2009 00:35:17 +0200
Can't give you a full solution, and have no experience with FreeOTFE, but atleast one of your two points against TrueCrypt can be worked around. See below. On Wed, Sep 30, 2009 at 23:09, Secure Net <secure.net () live ca> wrote:
Hi, I'm working in a large enterprise that will look next year for an "enterprise class solution" that can handle all the life cycle of USB key that use encryption. But now, we have to find a quick win solution that we can put in production shortly with a limited budget. I personally used Truecrypt for several years but here the reason why I don’t want to use it for an enterprise solution: 1-If the user lost the password of his USB key, you are dead
You can backup the initial headers with a known password and then let the user change the password (http://www.truecrypt.org/docs/?s=program-menu) Although you still need admin privileges to load the TrueCrypt drivers... Best regards Michael Boman -- http://michaelboman.org - Security Blog & Wiki ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- RE: failure notice Secure Net (Oct 01)
- Re: failure notice Michael Boman (Oct 02)