
	Home > Midmarket CIO Tips > Data centers and infrastructure for the midmarket > Windows Encrypted File System: Beware of its ease of use!

CIO Midmarket Tips:

EMAIL THIS

TIPS & NEWSLETTERS TOPICS

DATA CENTERS AND INFRASTRUCTURE FOR THE MIDMARKET

Windows Encrypted File System: Beware of its ease of use!

Rick Cook, Contributor
11.01.2005
Rating: --- (out of 5)

Digg This!

StumbleUpon

Del.icio.us

This tip originally appeared on SearchWinSystems.com, a sister site of SearchSMB.com.

The Windows Encrypted File System (EFS) safety measure is a double-edged sword when it comes to security. This feature in Windows XP Professional and Windows Servers lets users easily encrypt files and folders to protect them from snoopers.

The other side of the "edge" is that it's too easy. While EFS can be an important component of a well-designed storage security program, you don't need any kind of security program to use it. In fact, you don't even need administrative permission in the default configuration.

In the default configuration, any user can activate EFS and merrily start encrypting away without any provision for recovery or key management. If something goes wrong, all those files and folders can be just as lost as they would be if the disk had been corrupted by a virus.

Windows EFS provides a fairly sophisticated key management system that includes assigning a recovery authority for each user who creates EFS files. Mi

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Risk management for the midmarket
	Using key risk indicators to sell your information security program
	Gartner: Vetting security of third-party partners in five steps
	Security and risk management in the midmarket
	Identity and access management planning guide for the midmarket
	Get smart about patching security vulnerabilities
	Log management tool saves big on network fixes, integrates with IPS
	Unified communications: Securing access to OCS
	Disaster recovery and business continuity planning: Know the risks
	Database security: Who should have access?
	San Francisco network lockup justifies CIO fears

Security for the midmarket

Locking down security in the move to electronic medical records

A CIO's advice for implementing single sign-on solutions

Options for outsourcing security grow, offer IT budget savings

Network access control: Pointers for getting the knack of NAC

Stopping malware viruses from attacking Web 2.0 technology

Virtual servers no escape from IT security management concerns

Unified communications: Securing access to OCS

Unified communications security: How safe is it?

Risk assessment frameworks easy to employ

Midmarket regulatory compliance management: Don't let your guard down

Data centers and infrastructure for the midmarket

What do you know about data center outsourcing?

Pricing out Windows Server 2008 for virtualization cost efficiency

Data center strategy starts with the business

Desktop and application virtualization: Lessons learned

FAQ: What is unified communications, and why would I want it?

Virtualization technology creates hosts of problems for midmarket IT shops

Virtual servers key to consolidated data center

Fixed-mobile convergence saves firms costly mobile phone charges

Virtualization the center of county's 'disaster avoidance' plan

Five tips that could change your data center

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

crosoft recommends that anyone using EFS have at least two recovery authorities for each user of EFS and that the keys be managed in a safe and secure manner. However, because EFS is so easy to implement, users may jump the gun and start using EFS without the necessary protections in place. What's worse, organizations sometimes decide to use EFS without making proper allowances for managing and securing encrypted files.

Until your organization has an effective EFS policy in place, the best move is to deactivate EFS. This can be done with the local Group Policy (for individual computers) or the Domain Group Policy for domains.

Anyone thinking of using EFS in their organization should read Microsoft's tech note, "Best Practices for the Encrypting File System."

Rick Cook has been writing about mass storage since the days when the term meant an 80 K floppy disk. The computers he learned on used ferrite cores and magnetic drums. For the last 20 years he has been a freelance writer specializing in storage and other computer issues.

Rate this Tip
To rate tips, you must be a member of SearchCIO-Midmarket.com. Register now to start rating these tips. Log in if you are already a member.

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

Mid-market CIO Business Solutions on Data Integrity, Unified Communications, and Virtualization

SEARCH

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2007 - 2009, TechTarget \| Read our Privacy Policy