What are some good file names for stuff that would be encrypted? How about examples of things that would need to be encrypted. I am asking because I'm doing a presentation and I need to have examples of stuff that need to be encrypted.
Encrypted Stuff
- Thread starter ChAoTiCpInOy
- Start date
Modelworks
Lifer
- Feb 22, 2007
- 16,240
- 7
- 76
It really depends on the person and what they value.
The trick is that after you encrypt something don't place it in a folder called "Encrypted files".
Instead if it is something really important like your credit card numbers then encrypt it, then store it in a file renamed something like disk.log
The trick is that after you encrypt something don't place it in a folder called "Encrypted files".
Instead if it is something really important like your credit card numbers then encrypt it, then store it in a file renamed something like disk.log
Security through obscurity is crap. The filename shouldn't really matter except insofar as it prevents programs from opening it without knowing it is encrypted and causing errors.
Example of things requiring encryption would be PII, usernames and passwords, etc.
Example of things requiring encryption would be PII, usernames and passwords, etc.
SoulAssassin
Diamond Member
- Feb 1, 2001
- 6,135
- 2
- 0
Security through obscurity fails when its the primary protection method deployed. There are many instances where STO is a viable layer of defense. In the examples here, if dealing with US Customs, would you rather have moneylaundering.xls or vacationbudget.xls sitting in your document store? Given each person (if they look) may simple glace at those file names to determine if they even want to dig deeper...
On a more serious side, what program should I use to encrypt/apply a password to some folders on my HDD?
Also, how do I encrypt/password a USB jump drive?
Also, how do I encrypt/password a USB jump drive?
SagaLore
Elite Member
- Dec 18, 2001
- 24,036
- 21
- 81
There are 3 main targets of encryption and their advantages and disadvantages:
- Files/Emails
You only encrypt specific files, directories, emails, etc.. If your active login is hijacked, those files are still protected, UNLESS you have them open at that same time. You will have to enter in your password each time to access them, but this helps keep them safe when they're not in use.
- Drive
You encrypt the entire hard drive at the block level. You need to entire in a pin/password as you boot up. If your laptop or workstation's drive gets stolen, then the data is protected. But if you're booted up and logged in, all data is vulnerable to live attacks.
- Session
You encrypt any data during an active network session. Examples include SSL and IPSEC. This prevents attackers from spying on any data in-transit. You can use passwords or keys.
My suggestion is if you have a laptop, encrypt the drive, in case it gets stolen. If you ever use wireless, always use encryption. Use a VPN to connect remotely. If you are sending confidential data via email, use PGP/S-MIME, or at the very least use a password protected ZIP/RAR file for the documents (and give the password over the phone). I don't think its that useful to encrypt individual files on your own hard drive, but if you save them on another server, perhaps you could use Blowfish or some other encryption softwares.
Hope that helps.
- Files/Emails
You only encrypt specific files, directories, emails, etc.. If your active login is hijacked, those files are still protected, UNLESS you have them open at that same time. You will have to enter in your password each time to access them, but this helps keep them safe when they're not in use.
- Drive
You encrypt the entire hard drive at the block level. You need to entire in a pin/password as you boot up. If your laptop or workstation's drive gets stolen, then the data is protected. But if you're booted up and logged in, all data is vulnerable to live attacks.
- Session
You encrypt any data during an active network session. Examples include SSL and IPSEC. This prevents attackers from spying on any data in-transit. You can use passwords or keys.
My suggestion is if you have a laptop, encrypt the drive, in case it gets stolen. If you ever use wireless, always use encryption. Use a VPN to connect remotely. If you are sending confidential data via email, use PGP/S-MIME, or at the very least use a password protected ZIP/RAR file for the documents (and give the password over the phone). I don't think its that useful to encrypt individual files on your own hard drive, but if you save them on another server, perhaps you could use Blowfish or some other encryption softwares.
Hope that helps.
Originally posted by: SagaLore
There are 3 main targets of encryption and their advantages and disadvantages:
- Files/Emails
You only encrypt specific files, directories, emails, etc.. If your active login is hijacked, those files are still protected, UNLESS you have them open at that same time. You will have to enter in your password each time to access them, but this helps keep them safe when they're not in use.
- Drive
You encrypt the entire hard drive at the block level. You need to entire in a pin/password as you boot up. If your laptop or workstation's drive gets stolen, then the data is protected. But if you're booted up and logged in, all data is vulnerable to live attacks.
- Session
You encrypt any data during an active network session. Examples include SSL and IPSEC. This prevents attackers from spying on any data in-transit. You can use passwords or keys.
My suggestion is if you have a laptop, encrypt the drive, in case it gets stolen. If you ever use wireless, always use encryption. Use a VPN to connect remotely. If you are sending confidential data via email, use PGP/S-MIME, or at the very least use a password protected ZIP/RAR file for the documents (and give the password over the phone). I don't think its that useful to encrypt individual files on your own hard drive, but if you save them on another server, perhaps you could use Blowfish or some other encryption softwares.
Hope that helps.
What do you mean? I got a new laptop, and I am about to create a TrueCrypt drive for private information.
Modelworks
Lifer
- Feb 22, 2007
- 16,240
- 7
- 76
Originally posted by: SagaLore
My suggestion is if you have a laptop, encrypt the drive, in case it gets stolen. If you ever use wireless, always use encryption. Use a VPN to connect remotely. If you are sending confidential data via email, use PGP/S-MIME, or at the very least use a password protected ZIP/RAR file for the documents (and give the password over the phone). I don't think its that useful to encrypt individual files on your own hard drive, but if you save them on another server, perhaps you could use Blowfish or some other encryption softwares.
Hope that helps.
You should also set a bios password on the laptop and make sure the hard drive is the first boot device, not usb or cdrom. That makes the cold boot hack impossible.
Originally posted by: RESmonkey
Originally posted by: SagaLore
There are 3 main targets of encryption and their advantages and disadvantages:
- Files/Emails
You only encrypt specific files, directories, emails, etc.. If your active login is hijacked, those files are still protected, UNLESS you have them open at that same time. You will have to enter in your password each time to access them, but this helps keep them safe when they're not in use.
- Drive
You encrypt the entire hard drive at the block level. You need to entire in a pin/password as you boot up. If your laptop or workstation's drive gets stolen, then the data is protected. But if you're booted up and logged in, all data is vulnerable to live attacks.
- Session
You encrypt any data during an active network session. Examples include SSL and IPSEC. This prevents attackers from spying on any data in-transit. You can use passwords or keys.
My suggestion is if you have a laptop, encrypt the drive, in case it gets stolen. If you ever use wireless, always use encryption. Use a VPN to connect remotely. If you are sending confidential data via email, use PGP/S-MIME, or at the very least use a password protected ZIP/RAR file for the documents (and give the password over the phone). I don't think its that useful to encrypt individual files on your own hard drive, but if you save them on another server, perhaps you could use Blowfish or some other encryption softwares.
Hope that helps.
What do you mean? I got a new laptop, and I am about to create a TrueCrypt drive for private information.
some software will allow you to entirely encrypt the hard drive. some linux distro installs can set this up, and some software will set it up regardless of OS.
truecrypt might, with a recent release. i think norton or symantec or someone can also set it up. when you boot, you get asked for a password (your key) to allow access to the encrypted drive. i use this on my laptop, but still encrypt a few things on the drive itself with truecrypt
Bignate603
Lifer
- Sep 5, 2000
- 13,897
- 1
- 0
SagaLore
Elite Member
- Dec 18, 2001
- 24,036
- 21
- 81
Individual files. Full hard drive encryption is a good idea. The problem I see with authentication of the encrypted partition occurring after bootup, is that if you get infected with any malware, you're giving away your encryption password and full access to the data. While the volume is mounted, the encryption key is stored in RAM, and without a proper shutdown you may be able to grab it or some of the files you accessed from the pagefile. For this reason don't use hibernation if you want the benefits of volume encryption.
TRENDING THREADS
-
Discussion Zen 5 Speculation (EPYC Turin and Strix Point/Granite Ridge - Ryzen 9000)- Started by DisEnchantment
- Replies: 25K
-
Discussion Intel Meteor, Arrow, Lunar & Panther Lakes + WCL Discussion Threads
- Started by Tigerick
- Replies: 23K
-
Discussion Intel current and future Lakes & Rapids thread- Started by TheF34RChannel
- Replies: 23K
-
-
News NVIDIA and Intel to Develop AI Infrastructure and Personal Computing Products- Started by poke01
- Replies: 411
Facebook
Twitter