Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Encryption

From: Ken Schaefer <Ken () adOpenStatic com>
Date: Mon, 2 May 2011 15:34:09 +0000
Without detailed requirements, this is a bit of a pointless conversation.

Numerous "folder" based encryption solutions are out there - that will encrypt everything placed into a single folder. 
Additionally there are numerous full-disk encryption products out there, that will encrypt the contents of everything 
placed into the disk.

I'm not aware of anything that will specifically detect only Office files, and encrypt those (I'm suspecting this isn't 
a requirement). 

Requirements wise:
a) how many users in the environment?
b) remote encryption (on remote file servers)? Or local encryption only? What about docs placed into other repositories 
like CMDBs, SharePoint etc? (if required, then an agent is required to be local to encrypt the doc prior to saving to 
the remote location) 
c) sharing of files between users? Is this a requirement?
d) offline access to encrypted files (e.g. you have a Word doc that you need to read on a plane)
e) recovery options - how do you want to handle recovery access to the encrypted docs
f) What about the email system - are individual Outlook items (like emails, calendar appointments) also required to be 
protected? Or only documents?
g) what is the full extent of "Office" docs? Just docx, xlsx and pptx? Or are other files required to be protected as 
well?

Cheers
Ken

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Hristiyan Lazarov
Sent: Monday, 2 May 2011 4:02 AM
To: Kenneth Gonzalez
Cc: security-basics () securityfocus com
Subject: Re: Encryption

Hi Kenneth,
To be honest, I don't know a simple solution that integrates with Active Directory, since it is a directory service and 
requires more complex server side back-end (AD connectors, SLQ database, etc.).
I have worked a lot with Endpoint Encryption for PC (EEPC by McAfee) and would say that this product is quite hardcore. 
It has two components - Full Disk Encryption and File and Folder Encryption, for both I'm 100% sure that works with 
network shares and mapped network drives.

If you like, I could send you more information about that suite.

Regards,
Hristiyan

On Tue, Apr 12, 2011 at 7:49 PM, Kenneth Gonzalez <Kenneth.Gonzalez () soportexperto com> wrote:



Hi, i want to implement a simple system to encryp Office files, like Docx, XLSX adn PPTX, and i need to integrate 
this encryption system with Active Directory.

i dont wanto to implement Active Directory RMS, hopefully a open 
Source or another third party solution. Do you know something like 
that... thanks




------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: