Re: PCI Compliance - Encryption of all non-console administrative access.

Excuse me, what company encrypts "anything on disk" ???

Lots of them. I was in a meeting a couple weeks ago about the
security people wanting just that - encrypt "data at rest" in
databases that are already protected by RACF. The fun part is that
many of the fields they want encrypted are keys on the databases...

IMHO "encrypt everything" is kind of euphemism (fiction if you want).

The new mantra of the security folks.

It is simply impossible.
It is also too expensive and not needed, but this is another story.

Well, the big problem comes after you encrypt everything then lose the
key to decrypt. Your backups are useless. I can see companies going
belly up from the new "encrypt everything" philosophy.

.

Relevant Pages

  • Re: Encryption of files on USB flash drive
    ... You can find problems with current transparent security methods, ... It is an EFS that encrypts individual files. ... You can choose to encrypt a folder and all of it's contents (including ... encrypt and decrypt data. ...
    (sci.crypt)
  • Re: More on caching and logging
    ... hurt the aura of Mac security Apple has cultivated over the years? ... If you put your sensitive files onto another, external, hard drive, and then ... of ways to encrypt files, ... Anything on a work machine is by definition subject to work rules. ...
    (comp.sys.mac.system)
  • Re: Using S-MIME (encrypted & signed email)
    ... encrypt email is about better security practice, ... >> preceived view of complexity in deployment? ... I don't know how important these posts really are... ...
    (microsoft.public.security)
  • Re: password protect encrypted directory
    ... I think once someone has physical access, most security ... I use OpenSSL to encrypt files, ... If a user has physical access, and you cannot assume that the ... >pen testing experience in our state of the art hacking lab. ...
    (Security-Basics)
  • RE: Opening PKI encrypted with Public Key outside your Escrow Authority.
    ... Acme company has a PK infrastructure with escrowed private key ... But If User@xxxxxxxx uses the Public Key from User@xxxxxxxx to encrypt. ... "Discover the Security Benefits of Cisco NetFlow" ... the veteran Network Behavior Analysis ...
    (Pen-Test)