Desktop encryption isn't a security solution for all, but depending on the enterprise, the user within an enterprise or a business' changing needs, it's certainly worth considering.
In our lab, we've found three solutions that we recommend: Fedora 12, the free, Linux-based operating system; TrueCrypt, the open source encryption application; and PGP Desktop, the commercial desktop encryption and decryption software that is sold through the channel. These are solutions that are readily available to system builders and solution providers, provide various levels of encryption capability and are easily integrated.
Fedora 12
The CRN Test Center recently evaluated Fedora 12, the open-source Linux operating system initially shepherded by Red Hat. Right away, it became clear that Fedora 12 is a notch above other desktop operating systems on the security front, not only because it provides solid encryption functionality but because it makes this encryption so accessible.
Fedora 12 uses an installer called Anaconda that creates, among other things, a Logical Volume Manager on the hard disk. At the outset of installation, a menu pops up providing options for hard-drive partitioning. There, you'll find all you need to do to encrypt the volume. The encrypted partition is password-protected, and the password is selected and entered into a dialog box right then and there. From then on, the file system is encrypted.
Fedora 12 is simple enough to use, and, like other distros, is preloaded with a number of open source applications for productivity and management. If the desktop or notebook requires a Windows OS, it's easy enough to install Fedora 12 into a virtual machine through, if nothing else, Oracle's VirtualBox virtual machine software, which is a free download.
Fedora 12 also supports opencryptoki, which allows devices like smart cards, smart disks or other media that hold encrypted data. Whether installed natively or as a VM, Fedora 12 allows for the comfort of encryption without much sacrifice in usability.
TrueCrypt
TrueCrypt allows for the creation of virtual encrypted disks, or encryption of entire partitions or storage devices like USB drives or HDDs. It supports AES-256, Serpent and Twofish encryption algorithms and, as a free, open source application, costs nothing to download or install.
The latest release, TrueCrypt 6.3a, supports Windows 7, Mac OS X 10.6 and Linux, and allows for entire drives or individual files to be encrypted. TrueCrypt can also completely hide files on a drive, making them "invisible." And, because of the combination of algorithms it supports, encryption keys can be as short or as long as a user wants. (The longer you rotate the cursor over the application, the longer the encryption key.)
Over the last several releases, the TrueCrypt community has worked to make the application faster and easier—which means more accessible and user-friendly. Like many encryption applications, if you lose your password, it's over. No data recovery is possible without it. But for data loss prevention, it's a simple way for system builders and solution providers to add a layer of security to the PC.
PGP Desktop Professional
For $239, you get a perpetual license to PGP Desktop Professional, which provides full-disk encryption for Windows, Mac OS X and Linux, e-mail encryption, IM encryption and "secure file shred."
Most of that stuff you can get for free, so why would anyone pay? A powerful reason is the user interface, a console that makes keeping track of keys, files and disks simple -- yet manages strong enough encryption for C-level executives who want alternatives to protecting information.
PGP Desktop Professional supports Windows 7, which means it could be installed and then migrated over during an OS upgrade from an earlier edition of Windows, if necessary.
|
Symantec's Code Red: The Law Enforcement/Anonymous E-Mail Exchange Law enforcement officials negotiated via e-mail for more than two weeks with an Anonymous group member trying to extort $50,000 from Symantec to keep stolen product code off the Internet. |
|
How To Sell IT Security Services To Your Customers Cyberattacks can cost a business thousands, even millions, of dollars, and can deal a death blow to some. Here's how IT solution providers can help guard against malicious attacks. |
|
Cybersecurity Experts: What They Know Could Scare You A recent report based on interviews with security experts in government, business and academia finds more than half in agreement that a worldwide arms race is taking place in cyberspace. |
 More
Slide Shows |
- Insider Threats: The Next Frontier for Security Resellers and SMBs
- Complete Security and Your Bottom Line: Sophos, Value and the Channel
- Tough Threats, Tougher Security: How You Can Leverage New Solutions To Combat A “Targeted Attack” Landscape
- Dark Clouds Ahead: Why the Mid-Market Needs To Ramp Up Cloud Security and How You Can Help Them Get There
