Re: How to Test HDD Encryption

[jfvanmeter () comcast net]

Hello Samir, you should sign up to the Full Disk Encryption  mail list @ http://www.xml-dev.com/mailman/listinfo/fde

Here is my two shiny centavos on Full Disk Encryption, 

I believe it protects the data when its at rest, but once the OS is mounted then all bets are off because the OS is now 
handling access to any file. So you would need some type of file encryption software like PGP or EFS.

If you don't use a pre-boot log on, if I have access to the laptop  I could boot to an alternative OS, reset the 
administrators password, reboot, log in as the administrator and have full access to the files. 

Again this is just my two shiny centavos --John

 -------------- Original message ----------------------
From: infosecofficer () gmail com
> Hi 
>
>  
>
> How can we ascertain that the encryption software we have selected is doing its 
> jobs. 
>
> A small test like removing the hdd of an encrypted laptop and attaching it as an 
> external drive on another laptop shows the drive as unformatted. So far So 
> Good..
>
>  
>
> But is there any tool available to demonstrate to the management that even the 
> professionals cannot break in even if they lay their hands on the drive 
> physically.
>
>  
>
> I am basically trying to make a case to push for drive encryption in our 
> organization.
>
>  
>
> Please group suggest something.....
>
>  
>
>  
>
> Best Regards
>
>  
>
> Samir