Re: [Fed-Talk] Anyone have updated experience with Mac/Mac Server Full Disk Encryption?
Re: [Fed-Talk] Anyone have updated experience with Mac/Mac Server Full Disk Encryption?
- Subject: Re: [Fed-Talk] Anyone have updated experience with Mac/Mac Server Full Disk Encryption?
- From: Rich Trouton <email@hidden>
- Date: Thu, 10 Dec 2009 09:36:25 -0500
Jerry,
One of my main concerns about Pointsec has been the fact that the
recovery key is stored on the Mac itself. How are you handling
recoveries where the OS has crashed and burned?
Thanks,
Rich
---
Rich Trouton (Contractor)
LAN Support
email@hidden
-----------------------------------------------------------
National Human Genome Research Institute
National Institutes of Health — Bethesda, MD
Office number:
(240) 506-7993
NIH Help Desk:
(301) 496-4357
NIH support request website:
http://ithelpdesk.nih.gov/Support/
The best way to get in touch with me is through email.
On Dec 10, 2009, at 9:19 AM, Jerry L. Blackmon II wrote:
We use PointSec here at the BEP to encrypt drives of Mac laptops
that are regularly taken from the building. From a support
perspective, managing it couldn’t be easier. The installation works
well, encryption is smooth and trouble free, and decryption equally
so. Very easy for novice support personnel to learn, and virtually
bulletproof. I did my best to crack it recently just to prove it
could be done and wasn’t able to get around it. Eventually we’re
going to use this to encrypting the drives of machines involved in
the design and printing of banknotes — it’s already been rolled out
on PC desktops, and we’ve had nary a hiccup. One would imagine the
same would be the case for a server drive.
We have an IT Security division that handles the configuration and
management of the server side stuff, and I’d be happy to connect you
to our local experts with that if you’re interested. They have a
bird’s eye perspective on PointSec that I don’t since I deal
exclusively with BEP’s Mac footprint.
--
Jerry L. Blackmon II <email@hidden>
Senior Systems Administrator
Open Technology Group (Contractor)
OITO, Bureau of Engraving and Printing
"The more I learn about computers, the more I like my pencil." --
Susan Katz
From: David Emery <email@hidden>
Date: Tue, 08 Dec 2009 13:34:14 -0500
To: Fed Talk <email@hidden>
Subject: [Fed-Talk] Anyone have updated experience with Mac/Mac
Server Full Disk Encryption?
The two candidates I've been pointed to are PointSec (now Checkpoint:
http://www.checkpoint.com/products/datasecurity/pc/index.html) and PGP
(http://na.store.pgp.com/whole_disk_encryption_mac.html) The latter
does not have an Snow Leopard version yet (and my observations of
PGP in
the Mac marketplace are that it's been a real problematic
relationship -
outdated products and poor support...)
I'm still trying to figure out the best way to secure an OS X Server
installation against physical theft, on top of all the other IA
vulnerabilities...
dave
--
David Emery, DSCI, supporting PdM SW Integration, PM NSI
703 298 3473 (office/cell), 703 272 7496 (fax)
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
<ATT00001..txt>
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden