Just the problem of allowing third party access and other needed policies in an enterprise environment. Realistically, what I would like to see someone make is a raid controller that does transparent encryption and decryption on the fly that can be configured to either use x509 certs or regular password encryption. that would solve a lot of headaches for nas, san, and server installations. I wonder if any vendors here could do that. Now if you want a slam dunk for workstations make a similar card that sits between that hdd controller and the hdd (of course that would require scsi, sata, and pata versions). That would completely simplify full disk encryption.
Geoff
Sent from my BlackBerry wireless handheld.
-----Original Message-----
From: dan (at) recyclepcs (dot) com [email concealed]
Date: 12 Sep 2007 16:16:55
To:security-basics (at) securityfocus (dot) com [email concealed]
Subject: Why isn't full disk encryption from manufactures a slam dunk?
This would seem to be a security no brainer. What are its limitations?
Geoff
Sent from my BlackBerry wireless handheld.
-----Original Message-----
From: dan (at) recyclepcs (dot) com [email concealed]
Date: 12 Sep 2007 16:16:55
To:security-basics (at) securityfocus (dot) com [email concealed]
Subject: Why isn't full disk encryption from manufactures a slam dunk?
This would seem to be a security no brainer. What are its limitations?
[ reply ]