We have a need (like everyone else in MA) to provide disk encryption and access auditing to be in compliance with 201 CMR by 3.1.2010.
Our needs are modest:
-We have servers w/direct attached storage serving up files/shares to the company. We have a need to encrypt data in *some* of the folders, but not all. Ideally this all should be fairly invisible to the authorized users who access the data stored in these folders/shares.
-We need to be able to then create an audit log of access for those encrypted folders that we archive weekly or monthly or whatever and store somewhere in case we need it or get audited. Im guessing theres some 3rd party stuff we can install somewhere.
Im looking for suggestions here. I've looked at TrueCrypt already but it seems like (from what I've read) there might be issues with trying to do folder level encryption and then sharing it across a network.