Re: Whole OS encryption



nemo_outis wrote:

Imhotep <imhotep@xxxxxxxxxx> wrote in
news:fsGdneeW56iDQc_ZRVn-rQ@xxxxxxxxxxxx:

The biggest problem with MS software is viruses. It sound like when
you are running the OS you have decrypted the OS (since you are
running it) how does this really help you? You still can get a
virus/spyware/adware/etc. Is it that you do not want anyone to view
what you have on your hard disk. Is this the only reason why you are
considering this?


Protection against viruses is not the purpose of full HD OTFE encryption.
However, it does slightly limit some infection paths.

Not only does it protect data from being read when the machine is off, it
makes the machine invulnerable to leaked info (there's no place for it to
leak to) and obviates the need for scrubbing (swap files, registry, etc.,
etc.) Moreover, it makes it next to impossible to install software
keyloggers or tamper (except in a random way) with any data, programs,
etc. on the HD.


If so, look into the encryption that they are using. Stay away from
proprietary encryption technologies since more often than not, they
rely on security by obscurity....


All the products I listed use mainstream algorithms. With that said,
though, it's unfortunate that none are open-source (as, for instance,
Truecrypt is). With encryption the devil is in the details.

Regards,


....my question is that when running the OS is NOT in an encrypted state so
it really does not help at all when you are using the MS PC. In fact, it
only help prevent someone from:

1) Booting up the PC (unauthorized)
2) Someone viewing you hard disk (when the pc is off, or the hard disk has
been removed)

....but really all infections come when the OS is running...

Imhotep


.



Relevant Pages

  • Re: Whole OS encryption
    ... Imhotep wrote in ... Protection against viruses is not the purpose of full HD OTFE encryption. ... it does slightly limit some infection paths. ... Not only does it protect data from being read when the machine is off, ...
    (alt.computer.security)
  • Re: How to Facilitate and Use Data Protection on DOM (WinCE 6.0)
    ... encryption on and off, while still having the filter load. ... Decryption in my file system filter seems to work fine but the 2nd ... FS filter is NOT APPLIED to Removable USB ... Hard Disk as well as the Removable USB media. ...
    (microsoft.public.windowsce.platbuilder)
  • Re: How to Facilitate and Use Data Protection on DOM (WinCE 6.0)
    ... encryption on and off, while still having the filter load. ... Decryption in my file system filter seems to work fine but the 2nd ... FS filter is NOT APPLIED to Removable USB ... Hard Disk as well as the Removable USB media. ...
    (microsoft.public.windowsce.platbuilder)
  • securing hard disk stored key material
    ... confidential user information including private keys. ... on the hard disk in a "password" file. ... this time using an "encryption" salt (contains an encryption ... To boot the box and decrypt the confidential data ...
    (sci.crypt)
  • =?US-ASCII?Q?Re:_File_encryption?=
    ... > Subject: RE: File encryption ... > hard disk Not exactly transpertnt but almost there and very ... education and the case study affords you unmatched consulting experience. ... Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations. ...
    (Security-Basics)