Re: [Fed-Talk] Security wipe: good & bad news
Re: [Fed-Talk] Security wipe: good & bad news
- Subject: Re: [Fed-Talk] Security wipe: good & bad news
- From: Todd Heberlein <email@hidden>
- Date: Mon, 20 Aug 2012 15:15:42 -0700
Here is my attempt to summarize what I'm reading. I'm not so sure about (7).
(1) Remote wipe of iOS devices is instantaneous because the wipe erases the key used to encrypt all the data on the device.
(2) If a Mac uses FileVault 2, remote wipe is also instantaneous because FileVault 2's key is erased similar to iOS.
(3) If a Mac is *not* using FileVault 2, remote wipe can take many, many hours to complete because the process systematically overwrites the bytes on the drive.
(4) Side effect of not using File Vault 2: you (or the bad guy) can power down the computer before the wipe is complete, move the drive to a recovery system, and recover the data in the usual ways.
(5) iOS devices backup to iCloud, so wiped systems can be restored via the cloud.
(6) Macs are not backed up to iCloud, so you are responsible for maintaining a backup mechanism in order to restore after a wipe.
(7) (???) A wiped Mac that used FileVault 2 can be restored if you have the recover key backed up somewhere. (Is this correct?)
(8) If 6 is correct, and you've backed up your recovery key with Apple using the three security questions, you need to make sure none of the answers are available in your social graph (e.g., Facebook).
Useful links I've run across:
iOS Security
May 2012
http://images.apple.com/ipad/business/docs/iOS_Security_May12.pdf
OS X Security
March 8, 2012
http://training.apple.com/pdf/wp_osx_security.pdf
OS X: About FileVault 2
http://support.apple.com/kb/HT4790
iCloud: Erase the information on your device
http://support.apple.com/kb/PH2701
Todd
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden