Archived material Access restricted Article
Rantburg

Today's Front Page   View All of Sun 01/07/2007 View Sat 01/06/2007 View Fri 01/05/2007 View Thu 01/04/2007 View Wed 01/03/2007 View Tue 01/02/2007 View Mon 01/01/2007
1
2007-01-07 Science & Technology
Gummint to Use Full Disk Encryption on all Computers
Archived material is restricted to Rantburg regulars and members. If you need access email fred.pruitt=at=gmail.com with your nick to be added to the members list. There is no charge to join Rantburg as a member.
Posted by Steve White 2007-01-07 01:17|| || Front Page|| [2 views since 2007-05-07]  Top

#1 LOL don't lose the key.
Posted by Sock Puppet of Doom 2007-01-07 02:05|| www.sockpuppetofdoom.com]">[www.sockpuppetofdoom.com]  2007-01-07 02:05|| Front Page Top

#2 If disk encryption is such a great idea, why have I never come across a single instance of any organization or individual using it.

A much better idea is a RSA type device that generates a unique key required to start the computer.

Posted by phil_b 2007-01-07 04:43||   2007-01-07 04:43|| Front Page Top

#3 Hard drives are easy to remove from computers, and need protection at that level.
Posted by Anguper Hupomosing9418 2007-01-07 06:04||   2007-01-07 06:04|| Front Page Top

#4 If you read the description of FDE on Wikipedia, you won't be impressed with the technology even with the 256 bit AES keys.

The encryption chip doesn't raise my flag, but a dongle would be better in that it combines physical security with disk/software security plus the dongle addresses the boot time vulnerability that is inherent in FDE.

The best security is always physical security. If the Bad Guyz™ can't latch onto your packets, your hardware or your keys, they can't crack your computer encryption no matter how weak it may be.

If the government has bought into the notion that FDE is a cureall for sloppy security we may as well award the NY Times the Presidential Medal of Freedom for their advanced work in computer security because that's as close to keeping secrets on government computers as we will ever get.

Posted by badanov 2007-01-07 08:39|| http://www.freefirezone.org]">[http://www.freefirezone.org]  2007-01-07 08:39|| Front Page Top

#5 "Sir, I've got a Private working for me who could fuck up a steel ball. Now, please tell me again about this new, 'foolproof, easy to use' system."

-- an NCO I once knew
Posted by Anonymoose 2007-01-07 09:00||   2007-01-07 09:00|| Front Page Top

#6 Heh heh, 'Moosey
I like break an anvil with a feather.
Posted by Shipman 2007-01-07 09:06||   2007-01-07 09:06|| Front Page Top

#7 We just had one of these installed on all our laptops at work. It registers a 'security question' and (I think) with a central server. If you forget your password you call them and answer the 'security question' they open up a 'backdoor' somehow.

I have to wonder where they keep all the 'security questions'....
Posted by CrazyFool 2007-01-07 11:47||   2007-01-07 11:47|| Front Page Top

#8 Security questions are kept on a sheet of paper hidden under the desk blotter of the Security Director.
Posted by jds 2007-01-07 13:45||   2007-01-07 13:45|| Front Page Top

#9 This will work well except for the post-it note with the password attached to the PC.
Posted by DMFD 2007-01-07 14:00||   2007-01-07 14:00|| Front Page Top

#10 What it takes.

You also have to consider whether swap and cache are encrypted.

Many notebook drives have password access. This is sufficient for many applications. Also, Seagate sells drives that encrypt at the hardware level.
Posted by  KBK 2007-01-07 16:37||   2007-01-07 16:37|| Front Page Top

#11 Anybody know if the biometric devices that are cheap and easily available actually work?

I was thinking last year about becoming a distributor for these little fingerprint reader security devices you can buy at Fry's for $50.


Posted by FOTSGreg">FOTSGreg  2007-01-07 17:27|| www.fire-on-the-suns.com]">[www.fire-on-the-suns.com]  2007-01-07 17:27|| Front Page Top

#12 I was thinking last year about becoming a distributor for these little fingerprint reader security devices you can buy at Fry's for $50.

The one's that work with xerox copies of fingers? How about the government stops buying Laptops and computers cannot be taken off premises?
Posted by Nimble Spemble 2007-01-07 17:32||   2007-01-07 17:32|| Front Page Top

14:16 SpecOp35
23:46 JosephMendiola
23:46 E.U. Rhythmic
23:42 JosephMendiola
23:31 Barbara Skolaut
23:30 Barbara Skolaut
23:29 JosephMendiola
23:28 Barbara Skolaut
23:27 Barbara Skolaut
23:13 JosephMendiola
23:09 JosephMendiola
23:04 JosephMendiola
23:00 tu3031
22:53 JosephMendiola
22:51 PBMcL
22:32 CrazyFool
22:31 anymouse
22:31 JosephMendiola
22:18 tu3031
22:17 JosephMendiola
22:12 JosephMendiola
22:11 Redneck Jim
22:10 tu3031
22:07 Spomort Greling4204









Paypal:
Google
Search WWW Search rantburg.com