What kind of encryption is best for you?

10 years ago

There are plenty of ways to secure data and all have pretty acronyms: Full Disk Encryption (FDE), File and Folder Encryption (FFE), Removable Media Encryption (RME) and so on. These three are the ‘meat’ of any good encryption solution. The question an organization has to ask itself is – which is best for me?

It’s an honest question and one that should be asked. Generally speaking, FDE is the most commonly selected solution – it’s safe, practical and very easy to implement and manage. With FDE there’s very little to worry about, the entire disk is encrypted, every portion of the hard drive is protected whether data resides there or not. This includes files, folders, the Operating System (OS) and space that isn’t used yet.

And this is really the key to FDE – every portion/sector/area of the hard drive is encrypted. Some solutions will not encrypt the OS or will only encrypt areas of a hard drive that have data stored on them. Neither solution is ideal when compared with proper FDE. If partial file protection is what is required, FFE is likely the better route to follow.

While FFE also ensures critical files and folders are encrypted, it has its weaknesses. FEE is susceptible to user error and generally speaking, is more complex to manage than a traditional FDE solution. However, FFE can be a much more ‘secure’ solution than traditional FDE when you look at how granular you can get with controlling information and how it’s secured.

Now both of these solutions are fantastic ways to secure sensitive organizational information, but what happens when that information needs to be shared either internally or externally? If that’s a requirement, then RME is an ideal add-on solution. A RME policy, incorporated as part of an overall data security solution, ensures things like accidental data leakage doesn’t happen. It ensures all removable media is encrypted when used whether it’s a USB key, external hard drive, CD/DVD etc. It gets locked down and helps to avoid situations like the loss of the personal information of 583,000 Canada Student Loan borrowers.

No matter what the requirement is, the good news is that we have a solution that will address it – SecureDoc.

Learn more about BitLocker:

BitLocker management

A guide to managing BitLocker in the enterprise

Why Windows 10 compatibility is key

Bitlocker or [fill in the blank] – but do you really have to choose?

Best encryption with our BitLocker toolkit

WinMagic https://www.winmagic.com

WinMagic is a leading developer of endpoint authentication and encryption products that, over the course of 25 years, has raised the bar for user security. With extensive experience with securing the endpoint — and continuous innovation — WinMagic is trusted by over 2,500 businesses and government agencies around the world and has over 3 million active licenses globally.

The PC is dead, long live the PC

The Cost of Data Loss

MFA and Zero-Trust Misconceptions Prevent Effective Solutions

The WinMagic team believes we can revolutionize the cybersecurity of the world. Our latest authentication solution, MagicEndpoint, is ready to…

May 16, 2023

Thi Nguyen-Huu

Device-Level Signals: Framework of Zero Trust Security

The U.S. government is tightening the reins, requiring agencies to comply with Zero Trust architecture (ZTA) by the end of…

April 13, 2023

Garry McCracken

Passkey vs. MagicEndpoint

There are three types of people in the corporate world: Those who think their laptop is just an average computing…

March 27, 2023

WinMagic

A more secure “client” for passwordless authentication

In this article, I’ll introduce a new passwordless authentication thought process: an entirely new “entity” that advanced passwordless solutions should…

March 8, 2023

Thi Nguyen-Huu

What passwordless means for the healthcare sector

This month, we had an enlightening conversation with healthcare specialist, Joy Poletti, who’s worked as the VP of access and…

January 10, 2023

Ryder Gaston