Reply to post: FDE wouldn't help against a hack

Revealed: Why Amazon, Netflix, Tinder, Airbnb and co plunged offline

Henry Wertz 1 Gold badge

FDE wouldn't help against a hack

"My idea was to use FDE. The AWS VMs would be provided with a decryption key at boot time so thay can access data stored on the disc. The key would then be deleted

I was thinking of using EncFS. Why would this cause problems with Data Protection Act?"

1) Yes it would, per some other commenters, it's about keeping control of the data, not control of *unecrypted* data.

2) Yes on a second front. How many have a data breach because a powered off server or disk is physically carried off? Very few (I recall reading about someone or other that had their server seized, and the feds could do nothing with it because it was encrypted, so it does happen. Also, it happens with portable computers, CDs, USB sticks, and tapes.) How many have a data breach because their system was hacked, asked to send all that juicy data out, and obligingly complied? Quite a few. Full disk encryption would do nothing against this attack.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon