> > Encrypted harddrives? Sounds like a clueless exec paranoid about IP. > Almost no code IP is worth anything to an outsider. Seriously, who is > going to bother to try and figure out a competitor's code-base? > Sounds like a huge PITA to me. For a CFO/CEO, I can understand > wanting to have an encrypted HD. BTW, the overhead of encryption on a > dev machine is very high. >
In 2007 there were a series of very embarassing, high profile data loss events in the UK: the Inland Revenue lost some unencrypted CDs with the tax and bank account details of over 10 million people. A contractor for the prison service lost a memory stick containing the personal details of prisoners due for release. A hard drive containing details of UK driving licence holders went missing in a data centre in the USA. As a result all the big consultancies accellerated their adoption of full drive encryption as a result, for all machines, as a way to mitigate against lost and stolen hardware. No, this wouldn't have prevented the first two events because people did not follow their employer's/customer's processes. It highlighted the degree of legal exposure though and the reaction was predictable. I did develop on a machine running full drive encryption for about nine months and I have to say that steady state performance was about the only thing we didn't complain about. Our biggest problem was the regularity with which the full drive encryption would fail, bricking the machine as a result and taking a couple of working days to get desktop support to get involved and run the decryption software. The bricking rate was as high as 20% in the early days. -- You received this message because you are subscribed to the Google Groups "The Java Posse" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/javaposse?hl=en.
