Educause Security Discussion mailing list archives

Re: Encryption

From: Mally Mclane <mally.mclane () BRISTOL AC UK>
Date: Wed, 20 Nov 2013 19:41:32 +0000

Chris,

Are you using PGP and keys, or just PGP Disk? If the former, I'd be
interested to know how you handle keys.

Mally
On 20 Nov 2013 19:39, "Chris Green" <cmgreen () uab edu> wrote:

Having done PGP to 4000+ laptops and evaluated other approaches, I
highly recommend determining if you are going to have a large amount of
platform control. Easy encryption deployments are areas with great
platform control otherwise there are lots of edge cases with hardware
capabilities.

Re: Dell Data Protection,
http://i.dell.com/sites/doccontent/shared-content/data-sheets/en/Documents/Dell_Data_Protection_Encryption_Solution_Overview0913.pdf<
“No
special formatting or “containers” created on the removable drive and no
forced copy, removal or destruction of pre-existing data”

I’m ignorant on it now so please raise any concerns with your sales/tech
representatives. Deployment wise, it seemed very nice. However, it was
implemented as a filesystem driver so when it wrote to disk, it would
encrypt the contents of the files.

E.g Students\BobbyTables-SSN.pdf would still have a visible filename
even if the content was encrypted. That’s a great reduction but
implementing an encryption solution is a lot of work if you still end up
with “disclosure due to loss” scenarios on assets you’ve touched. I
believe they added a feature to change that. This wasn’t an obvious
scenario until we started discussing “how to do windows troubleshooting”.

*From:* The EDUCAUSE Security Constituent Group Listserv [mailto:
SECURITY () LISTSERV EDUCAUSE EDU] *On Behalf Of *William Quan
*Sent:* Wednesday, November 20, 2013 12:30 PM
*To:* SECURITY () LISTSERV EDUCAUSE EDU
*Subject:* [SECURITY] Encryption

Hello,

We’re on a fast growing campus here at the University of Washington
Bothell. We’re in the initial stages of exploring encryption and I was
wondering if anyone out there had any thoughts or suggestions on this
topic?

So far we’re looking at using BitLocker and maybe EFS. We’re also looking
at Dell’s Data Protection Solution.

Thanks!

Will

*Will Quan*

Computer Analyst

University of Washington Bothell

Information Technologies

(425) 352-5487

Current thread:

Encryption William Quan (Nov 20)
- Re: Encryption Shamblin, Quinn (Nov 20)
- Re: Encryption Chris Green (Nov 20)
  - Re: Encryption Mally Mclane (Nov 20)
    - Re: Encryption Chris Green (Nov 20)
- Re: Encryption Dan Han (Nov 21)
  - Re: Encryption James J Furstenberg (Nov 21)
    - Re: Encryption William Quan (Nov 21)
    - Re: Encryption Self, Dennis (Nov 21)
- <Possible follow-ups>
- Re: Encryption SCHALIP, MICHAEL (Nov 20)