My client has a Lenovo Thinkpad Carbon X1 Type 20BS-CT01WW running Windows 7 Pro 64 bit. The CPU is an Intel i7-5600U with 8GB of RAM. The C drive is a 500GB Samsung MZHPV512HGL-000L1 SSD.
The data must be HIPAA compliant. Is full disk encryption the best way to protect the data with the least loss of computing power?
In the bios there is
1. Supervisor password.
2. Power on password.
3. If I go into Hard Disk1 Password I can select user and master passwords.
What passwords should I set and how difficult should the passwords be? I want to protect the data without making it too difficult for the client to use his new laptop. Can the passwords all be the same? I need a step by step procedure for setting the laptop up.