Security Basics mailing list archives

RE: File encryption

From: Jonathan Loh <kj6loh () yahoo com>
Date: Tue, 29 Nov 2005 14:37:40 -0800 (PST)

pgpdisk?  However, If the laptop is on and the key has been entered, then you
will still be at risk.  You may want to use pgpdisk and pgp encrypt certain
confidential documents.  

But this presents an additional burden for the user.  They must remember the hd
pw and the individual file pws.  One way to limit the pws is to have a hdpw and
a specific file pw and various other file pws.  This way all the user would
have to memorize is two pws.  Let me explain.  There will be a hd pw and there
will be a file called clown.txt (secret.txt and password.txt are poor choices
as the bad guys will know this is the file to break) which contains the
passwords for all other confidential files.  This file will be encrypted in
addition to the other confidential files.  So once clown.txt is decrypted then
the other files can also be decrypted.  But this means clown.txt must be
updated everytime a password is changed or a new confidential file is created.

--- Marty <mortfromork () videotron ca> wrote:

Hi,

We want to make sure that if the laptop is stolen and the
encryption is broken that we have an extra layer of
protection. The password can be guessed or acquired from
social engineering (from my point of view), thus the risk.



Marty!

-----Original Message-----
From: Aditya Deshmukh
[mailto:aditya.deshmukh () online gateway strangled net] 
Sent: Wednesday, November 23, 2005 10:08 PM
To: 'Mork'; security-basics () securityfocus com
Subject: RE: File encryption

Question on file encryption. We want to add a layer to our

file

security.Our hard disks are encrypted and we would like to

add single

file encryption.


I want to know why you want to add one more layer of file
security. If your Hard disk are already encrypted then with
a strong encryption then you don't need the extra
Encryption.


What is the best product that would silently encrypt and

decrypt

on-the-fly so it's transparent to the users?


I recommend you use PGP disk ecnryption.
It has whole disk enceyption as well as it can create files
that Can act as drives and are assissable using a drive
letters.

Type one password and you can access the files just like on
hard disk Not exactly transpertnt but almost there and very
good product with Exceptional support. 



____________________________________________________________
____________
Delivered using the Free Personal Edition of Mailtraq
(www.mailtraq.com)




                
__________________________________ 
Yahoo! Music Unlimited 
Access over 1 million songs. Try it free. 
http://music.yahoo.com/unlimited/

Current thread:

Remote Control to a remote computer with no listen port mickael kael (Nov 21)
- Re: Remote Control to a remote computer with no listen port Kenton Smith (Nov 22)
  - File encryption Mork (Nov 22)
    - RE: File encryption Ramki B (Nov 23)
    - RE: File encryption Adrian Floarea (Nov 23)
    - RE: File encryption Aditya Deshmukh (Nov 24)
    - RE: File encryption Marty (Nov 28)
    - RE: File encryption Jonathan Loh (Nov 30)
- Re: Remote Control to a remote computer with no listen port John Maher (Nov 22)
  - Re: Remote Control to a remote computer with no listen port mickael kael (Nov 23)
- Re: Remote Control to a remote computer with no listen port Ryan Cummings (Nov 22)
- Re: Remote Control to a remote computer with no listen port Rob Thompson (Nov 22)
  - Re: Remote Control to a remote computer with no listen port Scott C. Best (Nov 23)
- Re: Remote Control to a remote computer with no listen port Li Yinchao (Nov 22)
  - RE: Remote Control to a remote computer with no listen port Corey Watts-Jones (Nov 23)