Encryption is the staple weapon of the security business. As old as war itself, it scrambles data to conceal it from those not meant to see it. It sounds simple but nothing is simple about encryption, as the mathematical geniuses at Bletchley Park knew. That said, a modern, well-managed encryption system can protect desktop …
would have been nice to hear more about personal use scenarios
I know this is an enterpris-y article, but I would have welcomed more information about decryption in personal use scenarios when you don't have an AD system or for small home office cases.
- what happens if you change your mobo/BIOS?
- more generally, what happens if your encrypted hard drive is transferred to another system?
- OS changes?
Personally, this is why I haven't used either Bitlocker or the Mac's Filevault equivalent. I don't know what it wants very well so I am concerned at what you would need to have in to get at your own data in these cases. Things will be swell until you have a problem and then what?
The one case in point I've seen was a MacAfee encryption choke when I updated my laptop's BIOS. Luckily my IT dept was on the ball and knew the workarounds, but I would have hated to have that happen with my own computer on my own time.
On the other hand, I know fully well what a TrueCrypt de-cryption requires - a password and the Truecrypt binaries.