[SATLUG] laptop encryption
John Pappas
j at jvpappas.net
Sun Dec 30 10:58:48 CST 2007
On Dec 30, 2007 1:55 AM, Tom Weeks <tweeksjunk2 at theweeks.org> wrote:
> BTW.. One thing that you'll want to discuss with the "gatekeepers" at your
> company is who all needs copies of the partition level passphrases to get
> into your encrypted Linux system. Well thought out processes like this
> are
> just important as the encryption itself. Don't leave it out of your
> discussions. ;)
>
I second that. As with all security, the processes and key management
techniques are often more complex and important, regardless of the tool set
implementation. One of my clients is implementing NetApp DeCru encryption
appliances, and this concept is not going over well. They wanted
"plug-and-play" encryption and discovered that security and convenience are
mutually exclusive.
John
More information about the SATLUG
mailing list