|
Posted by on August 12, 2006, 1:52 pm
If you were Registered and logged in, you could reply and use other advanced thread options
Hello,
Are files protected by the encryption of XP Pro and Tiger Firevault
sufficient so that laptops using either are fully protected if lost or
stolen?
|
|
Posted by Markus Jansson on August 12, 2006, 2:19 pm
If you were Registered and logged in, you could reply and use other advanced thread options
marst17@yahoo.com wrote:
> Are files protected by the encryption of XP Pro
Depends. If user passphrase is over 16 marks long and random AND it nor
its hash are not stored anywhere in the hdd. Unfortunally they usually
are stored in LM and NTLM hashes that can be cracked open. Also, using
EFS is tricky, you have to set whole directories to be encrypted and be
carefull so that plaintext versions of files dont exist anywhere else on
the hdd.
> and Tiger Firevault
Never heard of it.
Just use Truecrypt with 24+ marks long passphrases and keyfile and you
are fine.
BTW. remember to wipe plaintext versions with Eraser when encrypting.
--
"Kansan enemmistön hyväksyntää ei tarvita minarkian perustamiseksi eikä
minarkian ylläpitämiseksi. Minarkiassa valtion tarkoitus ei ole toimia
kumileimasimena kansan enemmistön päähänpistoille, vaan turvata
yksilönvapaus. Siinä ero nykydemokratiaan nähden."
- Markus Jansson
|
|
Posted by Volker Birk on August 12, 2006, 10:40 pm
If you were Registered and logged in, you could reply and use other advanced thread options
> Are files protected by the encryption of XP Pro and Tiger Firevault
> sufficient so that laptops using either are fully protected if lost or
> stolen?
Hi,
depends on the attack you want to be secure from.
I'm very sceptical of EFS. Also FileVault had it's flaws (like
unencrypted swap), while the actual implementation seems to work now.
For Windoze, I'm using truecrypt.
I feel much more secure with dm-crypt under Linux, to be honest,
booting from a signed CD, authenticating with a key on an USB stick.
Yours,
VB.
--
Ich würde schätzen, dass ca. 87% aller spontanen Schätzungen völlig für
den Arsch sind.
Ralph Angenendt in debate@ccc.de
|
|
Posted by Sebastian Gottschalk on August 13, 2006, 12:14 am
If you were Registered and logged in, you could reply and use other advanced thread options
> marst17@yahoo.com wrote:
>> Are files protected by the encryption of XP Pro and Tiger Firevault
>> sufficient so that laptops using either are fully protected if lost or
>> stolen?
>
> Hi,
>
> depends on the attack you want to be secure from.
>
> I'm very sceptical of EFS.
The implementation seems to be fine, but it has problematic semantics.
F.e. it's impossible to transfer EFS-encrypted files when your program
doesn't support NTFS ADS metadata. A simple damage to the EFS metadata
makes the entire file unreadable. A single defective block inside the
file makes an entire 64 KB unreadable. And there're some problems with
locking mechanisms.
|
| Similar Threads | Posted | | SSL/https De-encryption | July 6, 2004, 9:15 am |
| NTFS Encryption | April 26, 2005, 6:31 pm |
| Encryption Key Storage | August 25, 2005, 8:09 am |
| Email Encryption | September 17, 2005, 12:20 am |
| Encryption size | October 25, 2005, 3:13 am |
| Determine what encryption was used | April 18, 2006, 8:52 am |
| Determine what encryption was used | April 28, 2006, 4:50 am |
| Encryption for Powerpoint? | May 19, 2006, 11:34 pm |
| Winzip and encryption on XP | November 2, 2006, 8:37 pm |
| Security and Encryption FAQ - Revision 18.2 | June 4, 2004, 9:59 pm |
|
XML site map