Security Basics mailing list archives
Re: Truecrypt
From: rohnskii () gmail com
Date: Thu, 13 Nov 2008 19:38:17 -0700
Good luck, you are trying to "push a string". Your idea sounds good, but trying to sell it is going to be an uphill effort, almost certainly ultimately an unsuccessful one. Simply put, you have to build a business case to sell the idea. But in my experience that kind of effort is too often doomed. Things you can use to build your case: - you are in the transport industry and your employees travel. What information do they store on the laptops? Is any of it sensitive? Any personal info about customers/employees: Name, address, SIN/SSN, phone number, birthday etc? Any corporate or client sensitive info/business secrets? What, if any, federal / state / provincial privacy legislation applies to your company? How many laptops, USB drives, have been lost in your company in the last year? A couple of years ago the FBI admitted that they were losing hundreds of laptops a year (they have worked to improve that). Is there a business manager you could sell your idea to to get their support. This sort of thing goes much better if it comes from the client/user side. Can you come up with an estimate of how much it costs annually to replace lost laptops. Maybe you can make a case to combine the encryption effort. If you read any other security newsletters you'll see a constant stream of data losses being reported. Find some reports that are in your industry, or similar ones. "Ghost" stories are often good motivators. As a separate point (that you may not want to mention) there are several products that can help with laptop recovery. They run the range from visible and "invisible" tags to help ID original owner, to "lo-jack" software to motherboard mounted hardware that "calls home". There is lots more to consider, but this should get you started. Good luck
Current thread:
- Truecrypt Douglas Duckworth (Nov 13)
- RE: Truecrypt Wicks, James (NBC Universal) (Nov 14)
- Re: Truecrypt Roscoe (Nov 17)
- Re: Truecrypt Viktor (Nov 17)
- Re: Truecrypt Alexander Klimov (Nov 19)
- Re: Truecrypt Viktor (Nov 17)
- <Possible follow-ups>
- Re: Truecrypt rohnskii (Nov 14)