Solved

Upgrade internal PGP-encrypted boot drive?

Posted on 2013-11-09
5
431 Views
Last Modified: 2014-02-21
I have an internal solid state HD in my Windows 7 64-bit laptop, and I need to replace it with a bigger one. There are four partitions on the drive. The C: drive that it boots to is not encypted, but the others are (i.e., the data partitions). If I use a cloning utility, what will happen to the encrypted partitions? Those partitions are fully backed up so I do have the option on not cloning them, and just restoring the data later.

Also, how do the partition sizes get set on the new HD? Wiull I have to expand them after cloning them? My system partition is the one that is almost full.
0
Comment
Question by:bnchester
  • 2
  • 2
5 Comments
 
LVL 61

Expert Comment

by:btan
ID: 39636770
A backup product that does raw (sector-by-sector) backup can also backup a PGP encrypted system partition, although only when booting from its own boot media.

In particular, casper creates a complete backup of an encrypted drive that retains all of the encrypted data in its original encrypted state, also duplicates an encrypted drive to a larger drive without requiring a laborious and time consuming backup, restore, and re-encryption process.

Importantly, it creates or restores an encrypted backup to a drive that is either smaller or larger than the original.

http://www.caspersecure.com/
0
 

Author Comment

by:bnchester
ID: 39636956
This looks good. So I clone to a 2.5" drive via an external HD enclosure, then just put that drive into the laptop and I'm ready to go?

Followup: I use ShadowProtect to back up my data (and system drive) to a network share, and this seems to have a lot of the same capabilities as Casper. Since the system partition ITSELF isn't encrypted, just the data, might that work?
0
 
LVL 61

Accepted Solution

by:
btan earned 100 total points
ID: 39636994
Plain partition should be as per norm recovery and backup. I did not know about shadowprotect in specific. Also note if the encryption used TPM chip on the  source machine then the key cannot be migrated to another, it needs to be decrypted
0
 
LVL 53

Assisted Solution

by:McKnife
McKnife earned 100 total points
ID: 39638150
Hi.

We did this type of migration many times with PGP WDE 10 fully encrypted disks.
We used drive snapshot ("DS")  http://www.drivesnapshot.de/en/index.htm to do it. After restoring the Image to the new drive, DS resizes the partitions. Reboot the System and re-encrypt it.

We also used clonezilla which does what breadtan mentioned: sector-copying the drive, so we keep it encrypted. Problem: what would clonezilla do with the encryption? Of course it cannot encrypt, so the partitions would have to be extended after cloning... a process which is not supported by PGP. So the best way I see to stretch partitions is doing an image copy as with drive snapshot and then re-encrypt.
0
 
LVL 53

Expert Comment

by:McKnife
ID: 39877781
Please respond or finalize it, this question is growing old :) I think it was obviously solved.
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

By default, Carbonite Server Backup manages your encryption key for you using Advanced Encryption Standard (AES) 128-bit encryption. If you choose to manage your private encryption key, your backups will be encrypted using AES 256-bit encryption.
This article is an update and follow-up of my previous article:   Storage 101: common concepts in the IT enterprise storage This time, I expand on more frequently used storage concepts.
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now