Warning: iconv_mime_decode() [function.iconv-mime-decode]: Malformed string in /home/secureg/public_html/lib/standard.lib.php on line 2251
How do boot-time disk access products work?
How do boot-time disk access products work?

How do boot-time disk access products work?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Antivirus Discussions    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
How do boot-time disk access products work? news 11-22-2006
Posted by news on November 22, 2006, 4:08 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Reading the many recent reports of stolen laptops containing sensitive
information, I decided it was about time to install a disk access
protection product on my own laptop. I have looked into products like
SafeBoot etc, but have come to the conclusion that I don't understand
how they really work.

When you power up the laptop, you go straight to the product's login
screen, provide a password, and then (assuming the correct password)
Windows starts up.

Question is, what does providing the correct password actually do? It
obviously unlocks something, but what? I used to think it performed a
decryption of the hard disk, but this can't be right because there is no
way it can decrypt a 100GB disk in the time it takes to start the
Windows boot. (And, in any case, how was the encryption performed in the
first place?)

The real question, however, is whether these products are of any use if
someone steals the laptop, takes out the hard drive and fits it into
another machine. Is it then possible to bypass the protection and read
the disk directly?

--
Ian

Posted by Far Canal on November 22, 2006, 4:25 am
If you were  Registered and logged in, you could reply and use other advanced thread options
news wrote

> Reading the many recent reports of stolen laptops containing sensitive
> information, I decided it was about time to install a disk access
> protection product on my own laptop. I have looked into products like
> SafeBoot etc, but have come to the conclusion that I don't understand
> how they really work.
>
> When you power up the laptop, you go straight to the product's login
> screen, provide a password, and then (assuming the correct password)
> Windows starts up.
>
> Question is, what does providing the correct password actually do? It
> obviously unlocks something, but what? I used to think it performed a
> decryption of the hard disk, but this can't be right because there is no
> way it can decrypt a 100GB disk in the time it takes to start the
> Windows boot. (And, in any case, how was the encryption performed in the
> first place?)
>
> The real question, however, is whether these products are of any use if
> someone steals the laptop, takes out the hard drive and fits it into
> another machine. Is it then possible to bypass the protection and read
> the disk directly?
>
>

Eh. All the answers are provided by the companies.
http://www.safeboot.com/products/


Posted by news on November 22, 2006, 12:10 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
>
>
>Eh. All the answers are provided by the companies.
>http://www.safeboot.com/products/
>

Please someone tell me where my specific questions are answered on the
SafeBoot site.

SafeBoot talks about encrypting data "on-the-fly". What does this mean?
What data? On-the-fly doing what? Saving a file that you have just
written? What about all the other tens of thousands of files that you
haven't written since you installed SafeBoot? Are they also encrypted?
If so, when?

Read the words on their site carefully. In the context of my questions,
they don't make sense to me.

--
Ian

Posted by bobrayner on November 22, 2006, 12:58 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
news wrote:

> >
> >
> >Eh. All the answers are provided by the companies.
> >http://www.safeboot.com/products/
> >
>
> Please someone tell me where my specific questions are answered on the
> SafeBoot site.
>
> SafeBoot talks about encrypting data "on-the-fly". What does this mean?
> What data? On-the-fly doing what? Saving a file that you have just
> written? What about all the other tens of thousands of files that you
> haven't written since you installed SafeBoot? Are they also encrypted?
> If so, when?
>
> Read the words on their site carefully. In the context of my questions,
> they don't make sense to me.

About Safeboot, specifically:

All the disk's contents are encrypted. This is a relatively slow
one-off process that occurs when you first install Safeboot. Safeboot
also installs something like a disk driver, which sits between Windows
and the actual hard disk (driver). Consequently, Windows does not know
or care that the disk is encrypted.

In routine use, Windows asks the Safeboot "driver" a question like
"read file X" - then Safeboot will go find the relevant part of the
hard disk, read the contents, decrypt them, and pass them back to the
blissfully ignorant Windows. This is what they mean by "On the fly"; it
does have a small performance disadvantage, but it's not too bad in
most cases.

There's no need to touch all the other unused files. They were
encrypted when you installed safeboot and they'll stay that way.
There's no need to decrypt them until, one day, you decide to use the
file - at which time Safeboot will decrypt it for you, without you (or
Windows) ever noticing that anything unusual is happening.

Providing the correct password at boot-time does not mean that the
whole disk gets encrypted/decrypted at boot-time. You're just getting
access to a "key" that can be used to read (and write) whatever files
are needed during the boot process.

The whole disk is encrypted; so if you take it out and put it in a
different computer, all you'll see is lots of random-looking junk. This
is one of the main attractions over (say) EFS. Before you ask - no,
passwords (or keys) aren't simply written on an obvious part of the
disk. ;-)

This is a brief oversimplification based on my experience of corporate
Safeboot stuff. Other products (and personal installations) may vary.
May contain nuts.


Posted by ---Fitz--- on November 22, 2006, 5:28 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
<SNIP>
> May contain nuts.
>

I like that!



Similar ThreadsPosted
Low Disk Space - Could it be a virus? June 27, 2005, 7:39 pm
There were no new updates available for any of your Symantec products. July 15, 2005, 8:12 am
Viruses that disable AV Products November 8, 2005, 11:57 am
antivirus for usb flash disk March 23, 2006, 2:05 pm
special virus in my flash disk (hitman and film) January 9, 2009, 4:05 pm
Security in Microsoft Products Technet Chat Thursday, Oct 13th October 10, 2005, 3:53 pm
Security in Microsoft Products Chat this Thursday, November 10th November 8, 2005, 4:52 pm
Will this work?? September 10, 2005, 2:38 am
How does "immunization" work? February 20, 2006, 3:47 am
MS Antispyware updates work !!! December 12, 2005, 1:44 pm

The site map in XML format XML site map

Contact Us | Privacy Policy