Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Laptop - Full Disk Encryption?

From: "Rich Borroff" <rich_borroff () harvard edu>
Date: Wed, 17 Oct 2007 13:36:30 -0400
We've started to roll out PGP WDE, and I like it a lot.  It has a couple
of Boss-friendly feature:

- multiple password access to the encrypted disk/partition (e.g., one for
the user, one for an admin)

- Single sign-on - It can be set to use the user's Windows logon as the
disk encryption password, so the user only need enter the password once. 
PGP WDE will synchronize when the user changes their password.

- Keyserver integration - PGP's WDE has good integration with their
keyserver, never need to lose the keys.

Rich Borroff
Network and Server Manager
Harvard University - DCE
617-998-8526


security-basics-return-46188 () securityfocus com on Wednesday, October 17,
2007 at 5:04 AM -0500 wrote:

Does anyone know of a good full disk encryption product.
It will be used for senior management so it must be easy to use and
recover if the password is forgotten.

Assumptions are that laptop information security is strongest if data is
not saved locally but an audit has revealed otherwise.

Technical Controls (proposed)

1. BIOS password. (currently not enforced)
2. Full disk or partition encryption. (currently not enforced)

Is there anything else I should take into account?

I have read that encryption is useless if the password that is used is
not strong is this true?


Thanks in advance for any help, greatly appreciated.

S


    
____________________________________________________________________________________
Don't let your dream ride pass you by. Make it a reality with Yahoo!
Autos.
http://autos.yahoo.com/index.html
Previous By Date Next
Previous By Thread Next

Current thread: