We help IT Professionals succeed at work.

Whole hard drive encryption software that causes files that are copied over network to be unreadable

353 Views
Last Modified: 2018-07-20
I'm working a project for a company that needs to insure that the documents and files stored on the hard drives of its executives are completely unreadable if any of the IT employees copy these files from the executives' hard drives to their own computers.

While only a few employees have domain admin access and would be able to do this in the first place we need to insure that if this is ever done that the files that are copied will be highly encrypted and won't be able to be read since this has already been done by former domain admins.

What kind of whole hard drive encryption software will do this?

Is this something that Symantec PGP whole hard drive encryption will do once the entire Windows 10 OS and hard drive of a computer is encrypted?
Comment
Watch Question

Technology and Business Process Advisor
CERTIFIED EXPERT
Most Valuable Expert 2013
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
David Johnson, CDSimple Geek from the '70s
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
EirmanChief Operations Manager
CERTIFIED EXPERT
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
IT GuyNetwork Engineer

Author

Commented:
OK what are some good Encrypting File System programs?

Can these Encrypting File System programs be used along with a whole drive encryption software such as Symantec PGP or with Windows Bitlocker?
btanExec Consultant
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
btanExec Consultant
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
David Johnson, CDSimple Geek from the '70s
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
btanExec Consultant
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
CERTIFIED EXPERT
Distinguished Expert 2019

Commented:
You will have noticed, that the author did not give any feedback yet. Writing too much, often does not even help until the author proves, that he is able to follow. This problem is old, any security admin knows it and whatever encryption is not the solution.
There are too many ways to get the contents of the machine if you have or had admin access at some point. Tightening things up means no longer administering it. No longer administering it means, the VIPs he's talking about will need to administer it themselves,

I work with all the stuff you mention, EFS, BL, 2FA whole disk encryption, ADRMS - that does not help here.

Happy new year everyone and Mr. K., congratulations on reaching 5,000 questions. A little more feedback in the next year(s) would be greatly appreciated.
IT GuyNetwork Engineer

Author

Commented:
I just got back from vacation to a place where I had no internet access.

I'm currently back to a very busy day at work and am reviewing these answers and will post feedback as I have the time.