Re: An EFS encryption question.
- From: "bagassa" <not@xxxxxxxxxxxxx>
- Date: Sun, 26 Oct 2008 16:03:35 -0200
Last question Brian,
The only white paper I found on the MS website talks about security in general, or about the BitLocker feature which I don't have (I have Vista Business).
Can I get a link to that EFS white paper that you mentioned ?
Regards,
Peter
==========================
"Brian Komar" <brian.komar@xxxxxxxxxxxxxxxxx> wrote in message news:%23Eyk8%23UNJHA.5232@xxxxxxxxxxxxxxxxxxxxxxx
Inline...
Good afternoon Brian,No. They would need access to the removed certificate's private key to open previous files
You raised a good point. Does this mean that the burglar who stole my computer and broke into my account could still read the files, simply because Windows will always make a new certificate ?
No. You need to read the whitepaper on how EFS works.
There is no registry change that can stop this automatic generation?
You could prevent the creation of self-signed EFS, but the client would still either request a Basic EFS certificate or autoenroll another certificate.
You need three things:
About those smart card readers you mentioned. Where can I get a simple one at a reasonable price ?
1) Smart card
2) Smart card reader
3) Middleware/mini-driver
Google is your friend. Search for Gemalto
Thanks for your time and input, Brian.
Peter
.
- Follow-Ups:
- Re: An EFS encryption question.
- From: GreenieLeBrun
- Re: An EFS encryption question.
- References:
- An EFS encryption question.
- From: bagassa
- Re: An EFS encryption question.
- From: Brian Komar
- Re: An EFS encryption question.
- From: bagassa
- Re: An EFS encryption question.
- From: Brian Komar
- An EFS encryption question.
- Prev by Date: security update problem
- Next by Date: Re: security update problem
- Previous by thread: Re: An EFS encryption question.
- Next by thread: Re: An EFS encryption question.
- Index(es):
Relevant Pages
|
