[FDE] FDE - Can we manage it?
Mike Johnson
mike at enoch.org
Wed Nov 8 12:13:05 MST 2006
Laundrup, Jens wrote:
> All,
> I am embarking on a major encryption initiative where I am starting with
> FDE for laptops (approx 2000), but them moving on to desktops (approx
> 8000), servers (800-900) and storage (tapes, then e-mail etc. As you
> all know, there are many systems out there that do some segment very
> well and a few that do many of them. Each vendor is also very good at
> presenting strong arguments for selecting their products.
>
> The problem is that key management has always been the bane of my
> existence. Is there a product that you know of that is capable of
> managing and controlling keys effectively (ie: does not require a team
> of people working full time on key management.
Yay! Someone else in the same situation I'm in. We've got more laptops
than that, but we're not planning on doing our desktops or servers. The
management of the system at the scales we're looking at is of the utmost
importance. We have to be able to manage keys, enforcement of
encryption, and most importantly, recovery of data in the event of lost
keys.
So far, we've only briefly spoken with PGP and they look pretty good.
Mike
More information about the FDE
mailing list