[FDE] Data at Rest, Data in Transit, and Data in Use
Allen
netsecurity at sound-by-design.com
Tue Jul 24 10:18:04 MDT 2007
Curt Wilson wrote:
[snip]
> From what I can see, FDE does not meet this particular need.
[snip]
> If the user can see the data, so can the malware, to the best of my knowledge.
My guess is you are correct; however, we are not, general, trying
to provide an infinitely high barrier to prevent any possible
compromise of data, only one that is higher than the current and
near term high jumpers can get over.
FDE will not protect against all vectors, which is why we need to
broaden the scope of our thinking (not necessarily this list) to
additional tools or practices.
To go back to the high jumper analogy for an example, a high
jumper has to have the room to accelerate before using their pole
to get over the bar. As they go over the bar, they leave behind
their pole, so a secondary barrier set a few feet beyond where
they will likely land does not need to be as high because the
height the gained with the advantage of the pole is no longer
available to them. This is defense in depth, and is, AFAIK, the
only real defense; therefore, the proper strategy that must be
applied.
Silver bullets died out with vampires and the Lone Ranger.
Best,
Allen
More information about the FDE
mailing list