Whole hard drive encryption software that causes files that are copied over network to be unreadable
I'm working a project for a company that needs to insure that the documents and files stored on the hard drives of its executives are completely unreadable if any of the IT employees copy these files from the executives' hard drives to their own computers.
While only a few employees have domain admin access and would be able to do this in the first place we need to insure that if this is ever done that the files that are copied will be highly encrypted and won't be able to be read since this has already been done by former domain admins.
What kind of whole hard drive encryption software will do this?
Is this something that Symantec PGP whole hard drive encryption will do once the entire Windows 10 OS and hard drive of a computer is encrypted?
While only a few employees have domain admin access and would be able to do this in the first place we need to insure that if this is ever done that the files that are copied will be highly encrypted and won't be able to be read since this has already been done by former domain admins.
What kind of whole hard drive encryption software will do this?
Is this something that Symantec PGP whole hard drive encryption will do once the entire Windows 10 OS and hard drive of a computer is encrypted?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You will have noticed, that the author did not give any feedback yet. Writing too much, often does not even help until the author proves, that he is able to follow. This problem is old, any security admin knows it and whatever encryption is not the solution.
There are too many ways to get the contents of the machine if you have or had admin access at some point. Tightening things up means no longer administering it. No longer administering it means, the VIPs he's talking about will need to administer it themselves,
I work with all the stuff you mention, EFS, BL, 2FA whole disk encryption, ADRMS - that does not help here.
Happy new year everyone and Mr. K., congratulations on reaching 5,000 questions. A little more feedback in the next year(s) would be greatly appreciated.
There are too many ways to get the contents of the machine if you have or had admin access at some point. Tightening things up means no longer administering it. No longer administering it means, the VIPs he's talking about will need to administer it themselves,
I work with all the stuff you mention, EFS, BL, 2FA whole disk encryption, ADRMS - that does not help here.
Happy new year everyone and Mr. K., congratulations on reaching 5,000 questions. A little more feedback in the next year(s) would be greatly appreciated.
ASKER
I just got back from vacation to a place where I had no internet access.
I'm currently back to a very busy day at work and am reviewing these answers and will post feedback as I have the time.
I'm currently back to a very busy day at work and am reviewing these answers and will post feedback as I have the time.
ASKER
Can these Encrypting File System programs be used along with a whole drive encryption software such as Symantec PGP or with Windows Bitlocker?