This Blog

Home
Contact

Syndication

AlertBoot Endpoint Security

Using Port Access Control: Another Way Of Ensuring Computer Data Security

Many data security professionals will tell you that total data security is not an achievable goal. They'll tell you that security is a continuous process of minimizing the chances of a data breach. If you use hard drive encryption programs like AlertBoot, you should pay attention to such statements 'cause they're right.

While encrypting a whole disk will significantly reduce the chances of a full-blown data breach, it cannot prevent all breaches. For example, USB ports, found on all computers manufactured over the past decade, could be a source of a data breach.

Hard drive encryption: Drive is encrypted, files are not

Did you know that hard disk encryption doesn't encrypt files? It sounds weird but it's true. "Hard drive encryption" encrypts (surprise!) hard drives. Any information saved on that hard drive is encrypted because the hard drive itself is encrypted.

To make matters a bit clearer, let me put it this way: any files you copy from the encrypted hard drive to a USB memory disk will show up as unencrypted files. Yep, you read that right. The same file that is safely protected via encryption on the hard drive shows up as an unencrypted file in the USB flashdrive.

And this is why full disk encryption cannot prevent all breaches: if the computer itself is stolen, chances are the content will remain encrypted. But if someone sticks a flash drive into the USB port while you went on a break and copies off files, then you've got a data breach in your hands.

How to control USB ports: Port access control software and blacklists

Completely blocking USB ports presents a dilemma, since it's such a multifunctional port. The same port that allows one to steal data using an external drive also allows the use of a mouse. Blocking the port completely would render both devices, and many others, useless

Thankfully, there are ways to control what can and cannot be accessed the computer via USB ports. The easiest approach is to use port access control software. Such software allows one to specify which devices should be given access to the computer.

And the process is quite simple, actually. Use a whitelist to specify what devices are allowed. The USB port will be functional for any devices on this list. Using a blacklist, on the other hand, will ensure that devices cannot connect to the computer.

Of course, this is not to say that you've reached total security. Perhaps an employee hell-bent on stealing data will e-mail himself a file.

Published Feb 04 2009, 12:05 AM by sang_lee

Filed under: mobile data security, port control, information security, secure digital assets, endpoint security, prevent data leakage, usb port control, safe notebook, usb port security software, usb port blocking, usb port security, usb port control software, laptop encryption solution, endpoint security breach, notebook file encryption, notebook data protection, securing corporate laptops

del.icio.us

Digg this

Stumble It!

Facebook

<Previous	Next>
USB Port Security Control Software - How It Works And Why You Need It	Hard Drive Encryption: New TCG Standards May Create Some Unintended Problems? (Updated)

Comments

No Comments

About sang_lee

Sang Lee is a Senior Account Manager and Security Analyst with Data Guard Systems, Inc., the leading provider of managed endpoint security services, based in New York, NY. Mr. Lee helps with the deployment and ongoing support of both the AlertBoot disk encryption managed service and the CellularManager cellular pos service for Data Guard's customers. Prior to working at Data Guard Systems, Mr. Lee served in the South Korean Navy. He holds both a B.S. and an M.S. from Tufts University in Medford, Massachusetts, U.S.A.

This Blog

Syndication

Recent Posts

Tags

Archives