Wait, PCI specifically mentions EFS? Odd that they'd call out a technology explicitly.
________________________________________ From: Matthew Carpenter [mailto:[EMAIL PROTECTED] Sent: Monday, August 18, 2008 2:45 PM To: NT System Admin Issues Subject: Re: File Server Encryption....Who is doing it? PCI standards state that EFS is not enough in an environment that has credit card data stored. You have to use a third party On Mon, Aug 18, 2008 at 4:41 PM, Troy Meyer <[EMAIL PROTECTED]> wrote: I am curious what your needs are Matt. What are you protecting from? If you have a central file server and have NTFS permissions on directories and have EFS in production for those more important items, what is lacking? Typically full disk encryption is only protection against theft and using your data in a separate system. If you have a secure location for your file server and a its always turned on, what exactly does full disk give you? -troy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
