Hello,
On 30/10/2007 17:13, Ali, Saqib wrote:
> Windows have had FDE (with pre-boot) solutions for a long while. Here
> is a list: http://www.full-disk-encryption.net/Full_Disc_Encryption.html
IIRC, none of the products on this list is open source.
Hagai.
--
> Right -- I was unaware that Windows actually had any real (pre-boot)
> FDE solutions before about the time of BitLocker. But I only
> peripherally have any idea about Windows crypto solutions, so I
> wouldn't be surprised if I'm wrong. Cheers,
Windows have had FDE (with pre-boot) solutions for a
On Oct 30, 2007, at 5:12 AM, Hagai Bar-El wrote:
A great product, but not an FDE one.
Right -- I was unaware that Windows actually had any real (pre-boot)
FDE solutions before about the time of BitLocker. But I only
peripherally have any idea about Windows crypto solutions, so I
wouldn't
Hello,
On 30/10/2007 07:37, Ivan Krsti? wrote:
> On Oct 29, 2007, at 3:56 PM, Hagai Bar-El wrote:
>> Are there at all any open source FDE products for Win32?
>
> http://www.truecrypt.org/
A great product, but not an FDE one.
It encrypts contents of logical drives into container files. You
On Oct 29, 2007, at 3:56 PM, Hagai Bar-El wrote:
Are there at all any open source FDE products for Win32?
http://www.truecrypt.org/
--
Ivan Krstić <[EMAIL PROTECTED]> | http://radian.org
-
The Cryptography Mailing List
Uns
> > Out of curiousity, are any open source FDE products being evaluated?
> Are there at all any open source FDE products for Win32?
Not that I know off. But with Full Disk Encryption now being embedded
into the hardware (Seagate FDE Momentus and Danberry), it doesn't make
much sense to start a ope
Hello
On 08/10/07 13:27, Steven M. Bellovin wrote:
> On Mon, 18 Jun 2007 22:57:36 -0700 "Ali, Saqib"
> <[EMAIL PROTECTED]> wrote:
>
>> US Government has select 9 security vendors that will product drive
>> and file level encryption software.
>>
>> See:
>> http://security-basics.blogspot.com/20
> Out of curiousity, Vista (BitLocker) was not mentioned?
BitLocker lacks centralized management, and has very limited key
recovery capability. Also it is limited to Vista Business or Ultimate
Edition.
BitLocker, if you are not using a external USB device to store the
key, falls back to volume le
On Oct 8, 2007, at 4:27 AM, Steven M. Bellovin wrote:
On Mon, 18 Jun 2007 22:57:36 -0700
"Ali, Saqib" <[EMAIL PROTECTED]> wrote:
US Government has select 9 security vendors that will product drive
and file level encryption software.
See:
http://security-basics.blogspot.com/2007/06/fde-fde-so
Stephan Somogyi <[EMAIL PROTECTED]> writes:
>FIPS 140(-2) is about validating cryptographic implementations. It is not
>about certifying entire products that contain ample functionality well
>outside the scope of cryptographic evaluation. That's more of a Common
>Criteria thing.
Not necessarily.
| A slightly off-topic question: if we accept that current processes
| (FIPS-140, CC, etc) are inadequate indicators of quality for OSS
| products, is there something that can be done about it? Is there a
| reasonable criteria / process that can be built that is more suitable?
Well, if you believ
On 8 Oct 2007 10:12:58 -0700, Stephan Somogyi wrote:
> At 02:11 +1300 09.10.2007, Peter Gutmann wrote:
>
>> But if you build a FDE product with it you've got to get the entire product
>> certified, not just the crypto component.
>
> I don't believe this to be the case.
>
> FIPS 140(-2) is about
Peter Gutmann wrote:
Ben Laurie <[EMAIL PROTECTED]> writes:
Peter Gutmann wrote:
Given that it's for USG use, I imagine the FIPS 140 entry barrier for the
government gravy train would be fairly effective in keeping any OSS products
out.
? OpenSSL has FIPS 140.
But if you build a FDE produc
t: Monday, October 8, 2007 11:52:28 AM (GMT-0800) America/Los_Angeles
Subject: Re: Full Disk Encryption solutions selected for US Government use
Arshad,
Some of the solutions already include a KMS. One of the key
requirements of this particular RFP was "Transparency". Can you please
elab
Arshad,
Some of the solutions already include a KMS. One of the key
requirements of this particular RFP was "Transparency". Can you please
elaborate more on how StrongKey KMS would have improved on
transparency?
Thanks
saqib
http://security-basics.blogspot.com/
On 10/8/07, Arshad Noor <[EMAIL
At 02:11 +1300 09.10.2007, Peter Gutmann wrote:
But if you build a FDE product with it you've got to get the entire product
certified, not just the crypto component.
I don't believe this to be the case.
FIPS 140(-2) is about validating cryptographic implementations. It is
not about certifyin
We submitted a letter to the Program Manager, that while they RFP
was asking for an FDE solution, they really needed to focus on Key
Management across the agency, rather than the actual encryption
solution itself, before they deployed any encryption product.
We proposed our open-source Symmetric
Ben Laurie <[EMAIL PROTECTED]> writes:
>Peter Gutmann wrote:
>> "Steven M. Bellovin" <[EMAIL PROTECTED]> writes:
>>> On Mon, 18 Jun 2007 22:57:36 -0700 "Ali, Saqib" <[EMAIL PROTECTED]> wrote:
US Government has select 9 security vendors that will product drive
and file level encryption sof
Peter Gutmann wrote:
> "Steven M. Bellovin" <[EMAIL PROTECTED]> writes:
>> On Mon, 18 Jun 2007 22:57:36 -0700 "Ali, Saqib" <[EMAIL PROTECTED]> wrote:
>>> US Government has select 9 security vendors that will product drive
>>> and file level encryption software.
>> Out of curiousity, are any open so
"Steven M. Bellovin" <[EMAIL PROTECTED]> writes:
>On Mon, 18 Jun 2007 22:57:36 -0700 "Ali, Saqib" <[EMAIL PROTECTED]> wrote:
>> US Government has select 9 security vendors that will product drive
>> and file level encryption software.
>
>Out of curiousity, are any open source FDE products being eva
On Mon, 18 Jun 2007 22:57:36 -0700
"Ali, Saqib" <[EMAIL PROTECTED]> wrote:
> US Government has select 9 security vendors that will product drive
> and file level encryption software.
>
> See:
> http://security-basics.blogspot.com/2007/06/fde-fde-solutions-selected-for-us.html
> OR
> http://tinyur
US Government has select 9 security vendors that will product drive
and file level encryption software.
See:
http://security-basics.blogspot.com/2007/06/fde-fde-solutions-selected-for-us.html
OR
http://tinyurl.com/2xffax
-
The C
22 matches
Mail list logo