Re: [Fed-Talk] Encryption of OS X
Re: [Fed-Talk] Encryption of OS X
- Subject: Re: [Fed-Talk] Encryption of OS X
- From: "Shawn A. Geddis" <email@hidden>
- Date: Fri, 15 Oct 2010 12:15:20 -0400
On Oct 15, 2010, at 10:44 AM, Wm.Cerniuk wrote: SED is much faster than any software-encryption application
I read this... Which does not have a mass of facts to use for comparison against software based technologies. (Too much fluff)
If SED is a zero impact solution, it could be ideal barring any difficulties with the interface to the device. The hard part is inserting proprietary technology into a standard connection. Proprietary puzzle pieces tend to be prone to problems and finger pointing between vendors. Is SED different?
Best, Wm. Cerniuk
Ph: 703.594.7616
SED - Self Encrypting Drives would always be faster than performing the same function in software.
Sounds like you are trying to leverage SEDs for RAID environments ? This is obviously quite different that use of an SED in say your laptop or desktop machine which you would have a single drive. The reference to RAID is want throws the point off. SEDs simply offload the encryption/decryption to hardware (inline) rather than the CPU performing that.
Any SED (and any FDE for that matter) requires management on any platform and hence would require additional services ( locally to the device & IT Centralized Management ). No avoiding that because you must perform Key Management. What could vary is whether the hardware vendor(s) provide this or an ISV.
- Shawn
_____________________________________________________
Shawn Geddis - Security Consulting Engineer - Apple Enterprise
|
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden