Security Basics mailing list archives
RE: Encryption
From: Ken Schaefer <Ken () adOpenStatic com>
Date: Mon, 2 May 2011 15:34:09 +0000
Without detailed requirements, this is a bit of a pointless conversation. Numerous "folder" based encryption solutions are out there - that will encrypt everything placed into a single folder. Additionally there are numerous full-disk encryption products out there, that will encrypt the contents of everything placed into the disk. I'm not aware of anything that will specifically detect only Office files, and encrypt those (I'm suspecting this isn't a requirement). Requirements wise: a) how many users in the environment? b) remote encryption (on remote file servers)? Or local encryption only? What about docs placed into other repositories like CMDBs, SharePoint etc? (if required, then an agent is required to be local to encrypt the doc prior to saving to the remote location) c) sharing of files between users? Is this a requirement? d) offline access to encrypted files (e.g. you have a Word doc that you need to read on a plane) e) recovery options - how do you want to handle recovery access to the encrypted docs f) What about the email system - are individual Outlook items (like emails, calendar appointments) also required to be protected? Or only documents? g) what is the full extent of "Office" docs? Just docx, xlsx and pptx? Or are other files required to be protected as well? Cheers Ken -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Hristiyan Lazarov Sent: Monday, 2 May 2011 4:02 AM To: Kenneth Gonzalez Cc: security-basics () securityfocus com Subject: Re: Encryption Hi Kenneth, To be honest, I don't know a simple solution that integrates with Active Directory, since it is a directory service and requires more complex server side back-end (AD connectors, SLQ database, etc.). I have worked a lot with Endpoint Encryption for PC (EEPC by McAfee) and would say that this product is quite hardcore. It has two components - Full Disk Encryption and File and Folder Encryption, for both I'm 100% sure that works with network shares and mapped network drives. If you like, I could send you more information about that suite. Regards, Hristiyan On Tue, Apr 12, 2011 at 7:49 PM, Kenneth Gonzalez <Kenneth.Gonzalez () soportexperto com> wrote:
Hi, i want to implement a simple system to encryp Office files, like Docx, XLSX adn PPTX, and i need to integrate this encryption system with Active Directory. i dont wanto to implement Active Directory RMS, hopefully a open Source or another third party solution. Do you know something like that... thanks
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Re: Encryption Altair Soares (May 02)
- <Possible follow-ups>
- Re: Encryption Hristiyan Lazarov (May 02)
- RE: Encryption Ken Schaefer (May 02)
- Re: Encryption Saif El Sherei (May 02)
- Re: Encryption theo (May 03)
- RE: Encryption Steve Armstrong (May 03)
- RE: Encryption Theo Chambers (May 04)
- Re: Encryption Joseph Paul Cohen (May 05)
- Re: Encryption Sean McCrohan (May 05)