Re: Encryption

["SCHALIP, MICHAEL" <mschalip () CNM EDU>]

Symantec Endpoint Encryption - but thinking really hard about moving to Bitlocker just for mobile data….

M

Sent from Windows Mail

From: Chris Green<mailto:cmgreen () UAB EDU>
Sent: ‎Wednesday‎, ‎November‎ ‎20‎, ‎2013 ‎12‎:‎46‎ ‎PM
To: The EDUCAUSE Security Constituent Group Listserv<mailto:SECURITY () LISTSERV EDUCAUSE EDU>

PGP Whole Disk Encryption.   Nothing homebrew ;-)

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Mally 
Mclane
Sent: Wednesday, November 20, 2013 1:42 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Encryption


Chris,

Are you using PGP and keys, or just PGP Disk? If the former, I'd be interested to know how you handle keys.

Mally
On 20 Nov 2013 19:39, "Chris Green" <cmgreen () uab edu<mailto:cmgreen () uab edu>> wrote:
Having done PGP to 4000+ laptops and evaluated other approaches, I highly recommend determining if you are going to 
have a large amount of platform control.   Easy encryption deployments are areas with great platform control otherwise 
there are lots of edge cases with hardware capabilities.

Re: Dell Data Protection, 
http://i.dell.com/sites/doccontent/shared-content/data-sheets/en/Documents/Dell_Data_Protection_Encryption_Solution_Overview0913.pdf
 < “No special formatting or “containers” created on the removable drive and no forced copy, removal or destruction of 
pre-existing data”

I’m ignorant on it now so please raise any concerns with your sales/tech representatives.  Deployment wise, it seemed 
very nice.   However, it was implemented as a filesystem driver so when it wrote to disk, it would encrypt the contents 
of the files.

E.g   Students\BobbyTables-SSN.pdf  would still have a visible filename even if the content was encrypted.   That’s a 
great reduction but implementing an encryption solution is a lot of work if you still end up with “disclosure due to 
loss” scenarios on assets you’ve touched.  I believe they added a feature to change that.   This wasn’t an obvious 
scenario until we started discussing “how to do windows troubleshooting”.


From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () 
LISTSERV EDUCAUSE EDU>] On Behalf Of William Quan
Sent: Wednesday, November 20, 2013 12:30 PM
To: SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>
Subject: [SECURITY] Encryption

Hello,

We’re on a fast growing campus here at the University of Washington Bothell.  We’re in the initial stages of exploring 
encryption and I was wondering if anyone out there had any thoughts or suggestions on this topic?

So far we’re looking at using BitLocker and maybe EFS.  We’re also looking at Dell’s Data Protection Solution.

Thanks!
Will

Will Quan
Computer Analyst
University of Washington Bothell
Information Technologies
(425) 352-5487


--
This message has been scanned for viruses and
dangerous content by MailScanner<http://www.mailscanner.info/>, and is
believed to be clean.

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.