Ah, I was thinking of schemes in which encipherment happens at the client side, but then I would be wrong about also needing to encipher the connection payload (since it would then be encrypted). My point is that hardware FDE on the disks won't protect the files on your server from permissions failures.
> -----Original Message----- > From: fde-boun...@www.xml-dev.com [mailto:fde-boun...@www.xml-dev.com] > On Behalf Of Dmitry Obukhov d.obukhov-at-samsung.com |FDE081212| > Sent: Monday, April 13, 2009 1:16 PM > To: .................... > Subject: Re: [FDE] how FDE is implemented at system layer > > DPW, > > It is not true; file base encryption is very resource consuming. To > spend > your server CPU load for encryption is the last thing you want to do. > Unless you have endless budget, of course. > > For the servers I can recommend to look on TCG Enterprise > specification. > Seagate announced their TCG Enterprise product, you may want to contact > them directly. _______________________________________________ FDE mailing list FDE@www.xml-dev.com http://www.xml-dev.com/mailman/listinfo/fde