--On 10. november 2006 10:49 -0600 "James M. Polk" <jmpolk@xxxxxxxxx> wrote:
At 09:58 AM 11/10/2006 -0500, King, Kimberly S. wrote:
> Fred Baker wrote:
> What I would suggest is that people encrypt confidential
> information on their laptops, and perhaps the entire laptop.
I strongly agree and my entire laptop is encrypted. Perhaps people could
consider suggesting to their management that data protection is critical
and disk encryption is a simple effective step.
Is *everything* on your laptop work related, or do you (speaking
generally) sneek a few personal files on the laptop.
technology reset:
when you encrypt an entire laptop, that usually means that there's some
preboot stage that picks up the key from a "secret" place, inserts itself
as a disk driver, and transparently decrypts everything that comes from the
disk (and encrypts what goes out).
The encryption doesn't care one whit whether the files are personal,
work-related or just random gunk off the IETF mailing list.
What it protects against is (I think) people who grab the laptop, pop out
the disk and try to read it on another device, or without the benefit of
having cracked the key-hiding code of that particular encryption product.
It doesn't protect you against people who know where the crypt software
hides the key, but is pretty good against the rest.
<http://en.wikipedia.org/wiki/Full_disk_encryption>
Harald
_______________________________________________
Ietf@xxxxxxxx
https://www1.ietf.org/mailman/listinfo/ietf