Presentation is loading. Please wait.

Presentation is loading. Please wait.

Encryption Jack Roberts, PPD, RAL, STFC. Why? Government reaction to high profile data losses. STFC General Notices 30 th January, 1 st February 2008.

Published byShayla Linwood Modified over 10 years ago

Similar presentations

Presentation on theme: "Encryption Jack Roberts, PPD, RAL, STFC. Why? Government reaction to high profile data losses. STFC General Notices 30 th January, 1 st February 2008."— Presentation transcript:

1 Encryption Jack Roberts, PPD, RAL, STFC

2 Why? Government reaction to high profile data losses. STFC General Notices 30 th January, 1 st February 2008. staff are hereby instructed that no unencrypted laptops or drives containing personal data should be taken off STFC sites (30 th January)

3 What is Personal Data? A. Any information that links one or more identifiable living person with private information about them. B. Any source of information about 1,000 identifiable individuals or more, other that information sourced from the public domain. Consequently, all laptops and PDAs need to be encrypted before they can be taken off site. (1 st February)

4 What Product? CRITERIA CESG approved FIPS-140 Full Disk encryption Need to be able to manage centrally Transparent to the user BUT No Mac solution Only limited Linux support No dual boot solution Products used in STFC BeCrypt Pointsec for PC Pointsec Mobile Red Hat SuSE 9.x RHEL 4 NLD

5 BeCrypt Pointsec Mobile Quick fix ~5 installations in PPD/~100 in STFC No installation problems No central management console. Slightly more expensive than Pointsec for PC For PDAs Not yet used in PPD Tested on a few PDAs in STFC, only 1 successful install. Newer version being tested.

6 Pointsec for PC (now renamed as Check Point Full Disk Encryption?)

7 Installation Method Initial preparation. Installed like a normal application. Typically takes around 4 hours. Problems Has refused to install on one or two laptops. Not compatible with 64-bit Vista.

8 How Does It Work? BIOS Pointsec Authentication Screen OS Loads OS Loads User works as normal Log in to OS User Account Single Sign On (SSO) Enters users OS account details automatically.

9 Recovery Management Console Central store of recovery files. Unlocking user accounts/changing passwords remotely Decryption

10 License Key bug Temporary license key expired 21 st March (Good Friday......). Mad rush on Tuesday 25 th to distribute new license key to make sure laptops dont decrypt. Some laptops with the new key start decrypting – eek! Why? License key checks at logon that it can contact an IP address, i.e. No Network Connection = Invalid license = Laptop Decrypts.

11 Current Status In PPD: ~95% Windows Laptops encrypted ~75% of all Laptops encrypted. 0 laptops corrupted. In STFC: 724 laptops encrypted (6th June). Maybe one or two laptops corrupted.

12 For the future... Hope to be able to perform a risk assessment within the organisation. Hopeful that a Mac solution will soon be available. Start encrypting PDAs.

13 Any Questions?

Download ppt "Encryption Jack Roberts, PPD, RAL, STFC. Why? Government reaction to high profile data losses. STFC General Notices 30 th January, 1 st February 2008."

Similar presentations

Mobile Encryption Group Discussion and Written Project – CDI East 2006 Rick Smith Rick Wanner

Mobile Encryption Group Discussion and Written Project – CDI East 2006 Rick Smith Rick Wanner
Wireless Connectivity at Pace University Wireless Connectivity is: Available at every Pace location Note: In NY 55 John St. & St. George have wireless.

Wireless Connectivity at Pace University Wireless Connectivity is: Available at every Pace location Note: In NY 55 John St. & St. George have wireless.
Erick Engelke Director, Engineering Computing January 10, 2010

Erick Engelke Director, Engineering Computing January 10, 2010
©2010 Check Point Software Technologies Ltd. | [Restricted] ONLY for designated groups and individuals Visions for 2010 Anna Russell & Andy Clark.

©2010 Check Point Software Technologies Ltd. | [Restricted] ONLY for designated groups and individuals Visions for 2010 Anna Russell & Andy Clark.
PC Encryption installation progress/password screen Includes comments from: Encryption team Sarah Deane Tony Stieber Selected people who took part in the.

PC Encryption installation progress/password screen Includes comments from: Encryption team Sarah Deane Tony Stieber Selected people who took part in the.
Installing Windows XP Professional Using Attended Installation Slide 1 of 30Session 8 Ver. 1.0 CompTIA A+ Certification: A Comprehensive Approach for all.

Installing Windows XP Professional Using Attended Installation Slide 1 of 30Session 8 Ver. 1.0 CompTIA A+ Certification: A Comprehensive Approach for all.
General Operation and Facts As of 3/24/2014. Virtual Desktop 1. What is a Virtual Desktop? 2. Why VDI? 3. Installing the Virtual Desktop 4. Accessing.

General Operation and Facts As of 3/24/2014. Virtual Desktop 1. What is a Virtual Desktop? 2. Why VDI? 3. Installing the Virtual Desktop 4. Accessing.
How to access AUXDATA March 20111. If you have not received a Username from your DSO-IS, do not go any further. Send a request to your FSO-IS/SO-IS asking.

How to access AUXDATA March If you have not received a Username from your DSO-IS, do not go any further. Send a request to your FSO-IS/SO-IS asking.
Securing. Agenda  Hard Drive Encryption  User Account Permissions  Root Level Access  Firewall Protection  Malware Protection.

Securing. Agenda  Hard Drive Encryption  User Account Permissions  Root Level Access  Firewall Protection  Malware Protection.
15.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.

15.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.
Configuring Windows Vista Security Chapter 3. IE7 Pop-up Blocker Pop-up Blocker prevents annoying and sometimes unsafe pop-ups from web sites Can block.

Configuring Windows Vista Security Chapter 3. IE7 Pop-up Blocker Pop-up Blocker prevents annoying and sometimes unsafe pop-ups from web sites Can block.
1 Web Server Administration Chapter 3 Installing the Server.

1 Web Server Administration Chapter 3 Installing the Server.
Lesson 5-Accessing Networks. Overview Introduction to Windows XP Professional. Introduction to Novell Client. Introduction to Red Hat Linux workstation.

Lesson 5-Accessing Networks. Overview Introduction to Windows XP Professional. Introduction to Novell Client. Introduction to Red Hat Linux workstation.
Hands-On Microsoft Windows Server 2003 Chapter 2 Installing Windows Server 2003, Standard Edition.

Hands-On Microsoft Windows Server 2003 Chapter 2 Installing Windows Server 2003, Standard Edition.
Understanding Networks I. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.

Understanding Networks I. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.
1 Technology Readiness Maryland 2014-2015. 2014/2015 Admin Schedule 2 AssessmentOnline/CBT Testing Dates PARCC - PBAMarch 2 – May 8 MSA ScienceApril 13.

1 Technology Readiness Maryland /2015 Admin Schedule 2 AssessmentOnline/CBT Testing Dates PARCC - PBAMarch 2 – May 8 MSA ScienceApril 13.
 Contents 1.Introduction about operating system. 2. What is 32 bit and 64 bit operating system. 3. File systems. 4. Minimum requirement for Windows 7.

 Contents 1.Introduction about operating system. 2. What is 32 bit and 64 bit operating system. 3. File systems. 4. Minimum requirement for Windows 7.
Fermilab VPN Service What is a VPN ?.

Fermilab VPN Service What is a VPN ?.
10 Essential Security Measures PA Turnpike Commission.

10 Essential Security Measures PA Turnpike Commission.
Engineering H192 - Computer Programming The Ohio State University Gateway Engineering Education Coalition Lect 4P. 1Winter Quarter Introduction to UNIX.

Engineering H192 - Computer Programming The Ohio State University Gateway Engineering Education Coalition Lect 4P. 1Winter Quarter Introduction to UNIX.

Similar presentations

Ads by Google