RE: Security for Notebooks

["Lipski, Andrzej" <Andrzej.Lipski () bhs org>]

Phoenix has recently partnered with Softex to develop a similar tracing and
loss control tool that resides in the BIOS.  I'm not too familiar with it as
a press release just went out this week about it.  

http://www.phoenix.com/en/about+phoenix/investors/news+releases/2003/may+27,
+2003-a.htm

We are currently investigating it as an alternative to some of the other
applications that reside on the hard drive.

Its possible that they are targeting manufacturers or distributors with this
product and it's not for individual sale.

Andrzej Lipski


-----Original Message-----
From: Jon Pastore [mailto:jpastore () idetech net] 
Sent: Friday, May 30, 2003 6:58 AM
To: 'Ian'; jotero () SMARTEKH com; security-basics () securityfocus com
Subject: RE: Security for Notebooks


I'm interested in this thread since I travel with my notebook...where as I
don't have as many as 300 (more like 5) I seriously value my device. My only
problem with phone home software is what if they are not stealing it for
data? Just for the value of taking it and selling it? I mean they could just
boot from a cd or something wipe it and sell it.  I guess 90% of the time
the thief isn't that smart or looking to steal data but even so if that was
goal I would I just remove the drive and with a conversion kit put it in a
normal pc to try and mount the disk for analysis...

This is why I use PGP/GPG for sensitive data...I also carry around a USB
biometric thumb drive which is really kewl...won't decrypt your data off the
drive with out a matching thumb print...

Back to my point is there a better solution then this? And (granted I
haven't looked through all the links of the apps) aren't all of these Win32
apps? I run Linux solely on one of my notebooks...

Jon Pastore RHCE, President
IDE Tech, Inc.
(954) 360-0393 Office
(954) 428-0442 Fax


-----Original Message-----
From: Ian [mailto:e2chameleon () btopenworld com] 
Sent: Saturday, May 24, 2003 9:19 AM
To: jotero () SMARTEKH com; security-basics () securityfocus com
Subject: Re: Security for Notebooks


Hi,

I'm not sure of the availability of some of these services/systems in Mexico
but it will give you an idea of some of the things out there.

Computrace (http://www.computrace.com), Webdetect
(http://www.webdetect.com), CyberAngel (http://www.thecyberangel.com), Home
Base and Homing Pigeon (http://ww.zeasoft.com) all allow for the tracing of
equipment by identifying its location when the stolen kit is connected to a
phone line. Webdetect also allows for the hard disks of stolen equipment to
be securely wiped remotely. Thief Monitor
(http://www.burrotech.com/thiefmon.php) is a keylogger application that you
install on your equipment and then activate via a web site in order to
collect enough information to locate your equipment and/or identify the
thief.

There are a number of proximity systems available that can trigger alarms if
equipment is taken out of designated areas. Depending on the complexity of
the system you could integrate it into a physical access control system to
lock a door if someone attempts to leave a building with equipment without
appropriate authorisation. Bewater (http:/www.bewater.com), Johnson Controls
(http://www.johnsoncontrols.com) and the Keyless Lock Store
(http://www.nokey.com) are some of the many suppliers of proximity access
control systems. There's an article regarding this type of technology at
http://www.constructnet.com/indevlop/featurea/smartcards.html.

Caveo Anti-Theft is a device that fits into your Laptop PC card slot. It
uses motion sensing technology to detect whether you laptop is being stolen
or simply moved. It can be set to encrypt the laptop and sound an alarm (up
to 110 decibels) or even playback a recorded message if a theft attempt is
detected. A number of arming options are available including at start up,
when the screensaver is activated and when a combination of movements is
detected. For more information go to http://www.caveo.com. The technology
has also been licensed by Targus
(http://www.targus.com) and is used in their Defcon MDP product.

Cheers,


Ian.

e2chameleon Information Security Resource
http://www.e2chameleon.btinternet.co.uk

-------Original Message-------

From: JAVIER OTERO
Date: 23 May 2003 19:17:28
To: security-basics () securityfocus com
Subject: Security for Notebooks

I am serching for two diferent solutions:

1) If the notebook is lost or stoned a software that can inform, via
internet, the ip where is connected.
2) If some one takes the notebook from the bilding any chip or similar that
alerts, may by using an arc or similar

this is for about 300.

Thanks

Javier Otero
Grupo Smartekh
Antivirus Expertos
Bussiness Continuity
Inftegrity
5243-4782 al 84 Ext.300
México, D.F.


------------------------------------------------------------------------
---
Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes: Security +, Check Point,
Hacking & Assessment, Cisco Security, Wireless Security & more! Register
Now! --UP TO 30% off classes in select cities--
http://www.securityfocus.com/Vigilar-security-basics
------------------------------------------------------------------------
----

.


____________________________________________________
  IncrediMail - Email has finally evolved - Click Here


------------------------------------------------------------------------
---
Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes:  Security +, Check Point, 
Hacking & Assessment, Cisco Security, Wireless Security & more! Register
Now! --UP TO 30% off classes in select cities-- 
http://www.securityfocus.com/Vigilar-security-basics
------------------------------------------------------------------------
----




---------------------------------------------------------------------------
----------------------------------------------------------------------------

---------------------------------------------------------------------------
----------------------------------------------------------------------------