Newsletters Welcome, Guest Log In | Register
Blogs:

Carl Weinschenk

Data and Telecom

Companies’ communications strategies must be agile in a rapidly evolving market

About this Blogger RSS

< Previous | Next >

Subscribe

Sign up now and get the best business technology insights direct to your inbox.

  • Daily Edge
  • CTO Edge Update
  • Business Tools & Templates
  • Aligning IT & Business Goals
  • Maximizing IT Investments

0

When in Doubt, Encrypt the Whole Hard Drive

Posted by Carl Weinschenk Jun 25, 2007 8:15:47 AM

To people who follow security issues on a daily basis, the first half of this opinion piece at CNET written by William Watkins, the CEO of Seagate Technologies, contains no surprises. The short version: There are an increasing number of data breaches, and the cost associated with these failures is great and growing.

 

The second half of the piece is more compelling. Watkins says 29 states have laws aimed at data protection, and statutes in all but one of them include provisions for encryption. The fly in the ointment, however, is that the precise type of encryption is left open. Thus, it is possible for organizations to encrypt on a file-by-file basis, a procedure that Watkins says is "time-consuming, expensive and fraught with failure points."

 

He says the superior alternative is hard drive encryption which, once implemented, automatically protects every piece of data on the machine. The unstated idea is that full encryption is a no-brainer, though always there are complexities. The government apparently is beginning to understand what is at stake. Last week, vendors were selected for Data At Rest (DAR) contracts by the General Services Administration. Winners were Credant, GuidianEdge, Information Security, Safeboot, Safeboot Mobile, SafeNet, SPYRUS and WinMagic.

 

Encryption is a powerful tool for good guys -- and apparently for bad as well. This interesting posting at a site called Anti CATCH Team.org seeks to protect readers from "snoopy, abusive and corrupt police agencies" with full-disk encryption. Of course, a piece of software can't distinguish between these and legitimate police agencies. It seems, therefore, that the writer is trying to guard against any police intrusion, justified or not.

 

Regardless of the writer's attitude, he offers valuable comments by distinguishing between container-file and whole-disk encryption. The former, he says, doesn't protect against copies of data in Windows subfolders. Whole disk encryption -- such as PGP Whole Disk or DriveCryptPlus Pack -- encrypt everything, including temp files, browser history and other data.

 

Our guess is that the any debate between ad hoc and full-drive encryption should be settled somewhere between the two, but should lean toward encrypting at the hard drive level. The bottom line is that it can't be assumed that end users will make encryption decisions on any basis other than convenience. Therefore, machines likely to carry any sensitive material should get the full and automatic hard disk treatment.

More from our Network

Encryption: The Last Line of Database Defense  CTO Edge

A Cautionary Tale: The CEO and the Lost Laptop  CTO Edge

CA Embraces IBM Tape Format for Encryption  CTO Edge

Brocade Partners with Thales on Encryption  CTO Edge

Proofpoint Melds DLP with Encryption  CTO Edge

Add a comment Leave a comment on this blog post.

There are no comments on this post

Related Content

Browse

Topic: Encryption

Properly scrambling sensitive data makes it worthless to crooks.

Blog: Help Desk Services Running Afoul of Compliance

Article: The Security Risks with Sharing Documents and How to Prevent Them

White Paper: Backup and Recovery: The Benefits of Multiple De-duplication Policies

Related Topics

Data Integration, Network Security, Storage Management

Featured White Papers

Browse

Extreme Savings: Cutting Costs with WAN Optimization

Download this white paper on cost-savings through WAN optimization and discover how businesses of all different sizes have realized a return on investment in just a few months through significant hard cost savings in areas such as bandwidth reduction and IT consolidation.

The 8 Benefits of Adopting SFA

This checklist provides a list of the benefits sales force automation (SFA) brings; if three or four address pain points in your company, then you're probably ready to bring SFA into your organization.

Resource Centers

Browse

Tape Storage

Disaster recovery and business continuation that includes encryption, all at a manageable TCO.

Featured Whitepapers

Tape Fallacies Exposed — The Future of Tape Is Still Bright

Premium Tools

Browse

Disaster Recovery & Business Continuity Template Pack

Prepare your company for any type of disaster you can envision and those you cannot. Immediately download this comprehensive set of templates and tools for documenting your business contingency plans.

Learn more >

Windows 7 Upgrade Project Kit

Moving to Windows 7? The Windows 7 Upgrade Project Kit is the ideal support tool for managing all phases of an organizational upgrade to Windows 7. The tools and templates in this kit will help you develop a strategy and map out the implementation tactics which link your Windows 7 deployment to your company's bottom line.

Learn more >