I was wondering on a solution to keep data stored on desktops in a windows domain safe from theft. If someone broke into an institution and stole some towers/hdd's how could one put in some safety measures to make sure password cracking software is not employed to harvest company data? I was thinking of a hard drive password with a bios admin password on top of that. The key is to not add a layer of complexity to the users in the domain (Windows Server 2003) that would cause undue distress. Any ideas?