• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 614
  • Last Modified:

Windows Encryption

Hi!
I would like to know the pros and cons of using the built-in Windows encryption instead of a third party for the security (like NMS Black Whole).
I'm in an environnement where Windows XP is installed on workstations and Windows 2000 (Server) on the servers.

Thanks!
0
Sylvania
Asked:
Sylvania
  • 2
1 Solution
 
Rich RumbleSecurity SamuraiCommented:
I'll assume you mean the Encrypting File Systm (EFS) for  windows 2000 and higher.

EFS is a secure program, when configured correctly. That being said, when configured correctly... it's really tough to recover data if you forget your KEYs arent backed up well. Here are the last3 threads I've covered on EFS: (the last two are probably better than the first link)
http://experts-exchange.com/Security/Win_Security/Q_20932052.html
http://experts-exchange.com/Security/Win_Security/Q_20911328.html
http://experts-exchange.com/Security/Q_20887645.html

In those you'll see where people typically have problems, EFS is a good tool, but it is touchy... I actually prefer a 3rd party, for ease of use sake. You just have to do sooo much to use EFS securly. I like winzip and winrar. They use a great encryption algorythim, and it also saves space with compression. PGP is more secure, and my overall choice.
-rich
0
 
trywaredkCommented:
I agree with RICHRUMBLE - You definitely must ensure a backup of the Recovery Agent

HOW TO: Encrypt Data Using EFS in Windows 2000
http://support.microsoft.com/default.aspx?scid=kb;en-us;230520

Best Practices for the Encrypting File System
http://support.microsoft.com/default.aspx?scid=kb;EN-US;223316

Disable/Enable EFS on a Stand-Alone Windows 2000-Based Computer
http://support.microsoft.com/default.aspx?scid=kb;en-us;243035

You Cannot Decrypt Files After You Reset Your Password with a Password-Reset Disk
http://support.microsoft.com/default.aspx?scid=kb;en-us;308273

If you're a domain administrator - read HOW TO: Configure a Domain EFS Recovery Policy in Windows 2000
http://support.microsoft.com/default.aspx?scid=kb;en-us;313365

HOW TO: Back Up the Recovery Agent Encrypting File System Private Key in Windows 2000
http://support.microsoft.com/default.aspx?scid=http://support.microsoft.com:80/support/kb/articles/q241/2/01.asp&NoWebContent=1

Advanced EFS Data Recovery (or simply AEFSDR) is a program to recover (decrypt) files encrypted on NTFS (EFS) partitions
http://www.elcomsoft.com/aefsdr.html

Many Regards
Jorgen Malmgren
IT-Supervisor
Denmark

:o) Your brain is like a parachute. It works best when it's open
0
 
SylvaniaAuthor Commented:
Thanks Rich! (And Try too!)

You gave me a lot of reading, but it worths it. :)  Those are pretty good links and it gives me a much better understanding of the process.

Thanks again!
0
 
trywaredkCommented:
:o) Glad we could help you
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Certified Penetration Testing

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now