Solved

Upgrade internal PGP-encrypted boot drive?

Posted on 2013-11-09
5
436 Views
Last Modified: 2014-02-21
I have an internal solid state HD in my Windows 7 64-bit laptop, and I need to replace it with a bigger one. There are four partitions on the drive. The C: drive that it boots to is not encypted, but the others are (i.e., the data partitions). If I use a cloning utility, what will happen to the encrypted partitions? Those partitions are fully backed up so I do have the option on not cloning them, and just restoring the data later.

Also, how do the partition sizes get set on the new HD? Wiull I have to expand them after cloning them? My system partition is the one that is almost full.
0
Comment
Question by:bnchester
  • 2
  • 2
5 Comments
 
LVL 63

Expert Comment

by:btan
ID: 39636770
A backup product that does raw (sector-by-sector) backup can also backup a PGP encrypted system partition, although only when booting from its own boot media.

In particular, casper creates a complete backup of an encrypted drive that retains all of the encrypted data in its original encrypted state, also duplicates an encrypted drive to a larger drive without requiring a laborious and time consuming backup, restore, and re-encryption process.

Importantly, it creates or restores an encrypted backup to a drive that is either smaller or larger than the original.

http://www.caspersecure.com/
0
 

Author Comment

by:bnchester
ID: 39636956
This looks good. So I clone to a 2.5" drive via an external HD enclosure, then just put that drive into the laptop and I'm ready to go?

Followup: I use ShadowProtect to back up my data (and system drive) to a network share, and this seems to have a lot of the same capabilities as Casper. Since the system partition ITSELF isn't encrypted, just the data, might that work?
0
 
LVL 63

Accepted Solution

by:
btan earned 100 total points
ID: 39636994
Plain partition should be as per norm recovery and backup. I did not know about shadowprotect in specific. Also note if the encryption used TPM chip on the  source machine then the key cannot be migrated to another, it needs to be decrypted
0
 
LVL 54

Assisted Solution

by:McKnife
McKnife earned 100 total points
ID: 39638150
Hi.

We did this type of migration many times with PGP WDE 10 fully encrypted disks.
We used drive snapshot ("DS")  http://www.drivesnapshot.de/en/index.htm to do it. After restoring the Image to the new drive, DS resizes the partitions. Reboot the System and re-encrypt it.

We also used clonezilla which does what breadtan mentioned: sector-copying the drive, so we keep it encrypted. Problem: what would clonezilla do with the encryption? Of course it cannot encrypt, so the partitions would have to be extended after cloning... a process which is not supported by PGP. So the best way I see to stretch partitions is doing an image copy as with drive snapshot and then re-encrypt.
0
 
LVL 54

Expert Comment

by:McKnife
ID: 39877781
Please respond or finalize it, this question is growing old :) I think it was obviously solved.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Envision that you are chipping away at another e-business site with a team of pundit developers and designers. Everything seems, by all accounts, to be going easily.
When we purchase storage, we typically are advertised storage of 500GB, 1TB, 2TB and so on. However, when you actually install it into your computer, your 500GB HDD will actually show up as 465GB. Why? It has to do with the way people and computers…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question