nanog mailing list archives
Re: Windows Encryption Software
From: Curtis Maurand <cmaurand () xyonet com>
Date: Fri, 10 Dec 2010 08:29:20 -0500
On 12/10/2010 8:21 AM, Florian Weimer wrote:
After some research, I find that recovery of EFS (available for Win 2000/2003/XP/Vista/7) encrypted files in the case of disaster can be problematic. It has to do with keys, file ownerships, etc., etc., etc. Plan for disaster and know how to recover before you encrypt with EFS.I believe EFS is available in Windows XP and Windows 2003 Server, too. Software-based solutions have the advantage that they are somewhat more testable and reviewable. If it's all in the disk, you can't really be sure that the data is encrypted with a static key, and the passphrase is used for access control only. The latter approach seems to be somewhat common with encrypting storage devices, unfortunately.
--Curtis
Current thread:
- Windows Encryption Software Brandon Kim (Dec 09)
- Re: Windows Encryption Software John Menerick (Dec 09)
- RE: Windows Encryption Software Brandon Kim (Dec 09)
- Re: Windows Encryption Software Suresh Ramasubramanian (Dec 09)
- RE: Windows Encryption Software Brandon Kim (Dec 09)
- Re: Windows Encryption Software William Herrin (Dec 09)
- Re: Windows Encryption Software John Orthoefer (Dec 10)
- Re: Windows Encryption Software Ben Carleton (Dec 10)
- Re: Windows Encryption Software Jan-Philipp Warmers (Dec 10)
- Re: Windows Encryption Software Florian Weimer (Dec 10)
- Re: Windows Encryption Software Curtis Maurand (Dec 10)
- Re: Windows Encryption Software Michael Holstein (Dec 10)
- Re: Windows Encryption Software Curtis Maurand (Dec 10)
- Re: Windows Encryption Software Curtis Maurand (Dec 10)
- Re: Windows Encryption Software William Herrin (Dec 10)
- Re: Windows Encryption Software Chad Dailey (Dec 10)
- Re: Windows Encryption Software John Menerick (Dec 09)
- Re: Windows Encryption Software Nick Boyce (Dec 14)