123ArticleOnline Logo
Welcome to 123ArticleOnline.com!
ALL >> Computer-Programming >> View Article

Guidelines For Designing Secure Encryption And Decryption Of Files

Profile Picture
By Author: Shirley Green
Total Articles: 129
Comment this article
Facebook ShareTwitter ShareGoogle+ ShareTwitter Share

Follow these guidelines when designing secure encryption and decryption of files:
Disable EFS until you can develop an MCTS Certification EFS policy.
Determine who should be allowed to use EFS, and train these users.Partition the use of EFS. It is not necessary to allow all users to encrypt files. You
can enable and disable EFS in a GPO and link the GPO to any container where you need to either enable or disable the use of EFS.
If EPS will be used, harden it. This can be done by:
Ensuring the encryption of temporary folders. Applications can write files to temporary folders. If these folders are not marked by encryption, clear-text copies of your sensitive data might reside in them.
a Setting the page file to delete at shut down. The page file can also contain clear-text copies of encrypted documents. Should an attacker be able to obtain physical access to the computer, the page file is protected while the system is running, but when the system is shut down, the attacker might be able to gain access.
Use file recovery or key recovery where large ...
... numbers of users must be allowed to encrypt files.
Use key recovery in high-security situations.
If file recovery is used, design a process for file recovery. Require backup of free A+ exam questions encryption keys, and train users how to do it.
If file recovery using a PKI will be used:
Design a process for file recovery.
Create file recovery agents for special accounts. These accounts should not be accounts that are used for user or administrator chores. They can be assigned to and used by authorized file recovery personnel when the need arises.
Disable and protect file recovery agent accounts until they are needed.
Export file recovery keys, and consider removing the file recovery private key from the network.
Provide a separate file recovery station, and import file recovery keys only when necessary to recover files.
Back up all file recovery agent keys, and store them in a safe place.
If key recovery using a PKI will be used:
Enforce role separation.
Design the key archival and key recovery process. (See Chapter 2 for addi-tional information on key archival.)
Use unique accounts for key recovery agents. Key recovery agents should not be CA administrators or Certificate Managers.
Use special accounts for key MCITP certification recovery agents.

Total Views: 280Word Count: 375See All articles From Author

Add Comment

Computer Programming Articles

1. How To Choose The Right Coding Institute In Bhopal
Author: Shankar Singh

2. Streamline Your Finances With The Best Bookkeeping Software In Zambia
Author: Doris Rose

3. Maximizing Ebay Success With Maropost/neto Partnerships
Author: rachelvander

4. The Rise Of Ai In Modern Gaming
Author: Saira

5. Enhancing Business Efficiency With Entrust Network: Singapore’s Premier It Solutions Partner
Author: Entrust Network Services

6. Ai And Ml Training: Empowering Your Career With Infograins Tcs
Author: Infograins tcs

7. How To Evaluate Coding Institutes In Bhopal?
Author: Shankar Singh

8. Revolutionizing Delivery Services With Application Development
Author: basheer ansari shaik

9. How Google Cloud Platform Aids Businesses And Keeps Its Data Safe?
Author: Stuart

10. Custom Web Development Solutions In Surat For Growing Businesses
Author: sassy infotech

11. Video Streaming App Development: 12 Key Features, Architecture And Cost
Author: Byteahead

12. Understanding Google Analytics Events
Author: Byteahead

13. Types Of Learning Management Systems
Author: Byteahead

14. How To Choose The Best Coding Institute In Bhopal?
Author: Shankar Singh

15. Top Tech Trends Real Estate Companies Should Focus
Author: Byteahead

Login To Account
Login Email:
Password:
Forgot Password?
New User?
Sign Up Newsletter
Email Address: