News & Reviews


Keep up to date with Origin Storage

Tagged: Information Security RSS

  • Origin Storage 12:08 on 24/05/2011 Permalink | Reply
    Tags: , , , , , , , , , , , , , , , Information Security, , , ,   

    Data Protection 

    Self-encrypting drive solutions based on TCG specifications enable integrated encryption and access control within the protected hardware of the drive. Self-encrypting drives provide the industry’s premier solution for full disk encryption, protecting data when the machines or drives are lost or stolen. TCG’s open standards provide multivendor interoperability.

    Self Encrypting Drive Benefits:
    Better Performance
    • Encryption hardware, integrated into the drive controller, allows the drive to operate at full data rate with no performance degradation
    • Scalable solution – every drive contains encryption engine

    Stronger Security
    • Encryption always on – major compliance requirement
    • Keys for encryption are generated in the drive and never leave the drive
    • User authentication is performed by the drive before it will unlock, independent of the operating system

    Easier to Use
    • Encryption is transparent to both users and software.

    Lower Cost of Ownership
    • No need for complex infrastructure to manage encryption keys
    • Main processor cycles not used for encryption
    • No modifications to OS, applications or tools
    • Crypto-erase provides instant repurposing / decommissioning

    Self-Encrypting Drives in the Marketplace
    • Latest information on product availability and software support – (September 2010) and (August 2010)

    For more information on our Encryption product range, please click here.

     

  • Origin Storage 12:20 on 17/05/2011 Permalink | Reply
    Tags: Computer Storage Systems, Data Security Storage, Data Storage Solutions, , , Earls Court, Encrypted Flash Key, , , , , , Hard Drive Solutions, Information Security, , Infosec 2011, Infosec London, , Infosecurity 2011, , Infosecurity Europe 2011, Investment, , , London, , , , , Online Brochure, , , , Storage for laptops, Storage Options, Storage Virtualization, Virtual Storage   

    Infosec 2011 

    In April, and for the third year running, Origin Storage attended the InfoSecurity Europe exhibition at Earls Court, London. InfoSecurity has become synonymous with leading data security specialists, and this year saw almost 300 exhibitors setup for the 3 day event. Over the course of 3 days over 10,000 people ebbed and flowed through the venue inspecting the new products and services on offer.

    Origin took the decision to invest on a larger stand this year to accommodate the increase in visitors to our stall along with our ever-growing product portfolio. Our unique forward-thinking security solutions tend to generate a keen amount of interest, and providing the means for everyone to get hands on experience with them was high on our agenda.

    For this years show we brought along the Data Locker 2™, Enigma SED™, Encrypted Flash Key, Network Attached Storage and also announced and brought a prototype for the Data Locker 3™.

    Visitors were pleased to learn that the Data locker 2™, previosuly seen at last years event, had sucessfully passed certification of FIPS 140-2. With this government/military grade certification, and its unique security features, the Data locker 2™ will now appeal to a larger audience on a global scale.

    We were also pleased to announce a FIPS 140-2 version of our hard drive upgrade solution, the EnigmaSED™. Available as a replacement for standard computer hard drives – it provides a quick way to replace non-encrypted drives with a full hardware encrypted hard drive in three easy steps. Its pre-boot authentication system stops unathorised users from starting any system – a gigantic must in the world of mobile workers!

    On show was our newest network attached storage device the N16000, capable of storing upto 48TB of data storage across a multitude of different network infustructures such as NAS, iSCSI, SMB, NFS, AFP, FTP. With speeds suparsing 1000MBps/1GBps and the ability to encrypt RAID volumes, the N16000 is perfect for Enterprise customers looking to add large amounts of physical and virtual storage across their networks.

    Our big surprise to everyone was that over the last year, work had secretly pushed ahead with the Data Locker III. A large investment of $1.2m had been pumped into the project to ensure that the successor to Data Locker II was as cutting edge as it was good to look at. Sporting the new USB 3 interface, capacities currently up to 1TB, its user friendly backlit touch screen, and its robust ability to encrypt data on the fly, the Data Locker 3 generated much talk around the show.

    If you were unable to attend this year’s show, please feel free to contact us to find information on all the products we had on show, or perhaps even view our on-line brochure.

    We will also be exhibiting at next year’s show; if you are keen to attend you can register for the event free of charge.

     

  • Origin Storage 14:43 on 14/02/2011 Permalink | Reply
    Tags: , , , , , , , , , , , , , , , Information Security, , , , ,   

    Self-encrypting drive sales on the up, claims Seagate 

    But total sales still modest
    Disk maker Seagate claims it is finally making some headway in its attempts to get businesses to start buying its self-encrypting drive (SED) products, with a tripling in sales in the last two quarters.

    The company is now quoting total sales figures of “more than 1 million,” which is not much of advance of a similar figure offered informally in May last year, but Seagate can still point to numbers heading in an upward direction. Laptop shipments have, Seagate said, “doubled in each of the last three years.”

    Factors helping SED shipments in laptops and enterprise sectors will have included that the critical Momentus drive range first launched as far back as 2006 is now being qualified by partners as compliant with the Trusted Computing Group’s Opal specification. This offers a standard way for software to manage the drives compared to the previous proprietary approach.

    Partners include Dell, Lenovo and Panasonic in hardware and Credant, McAfee, Mobile Armor, Secude, Softex, Symantec, Wave Systems and WinMagic in software, which integrate with 24 separate Seagate SED products in the Savvio, Cheetah, and Constellation, and Momentus families.

    As impressive as the growth sounds, the figures are still miniscule when set against the 150 million drives the company might ship in a single quarter, which is where the challenge comes. SEDs are still a long way from being a mainstream sector, even in business despite attempts to push the technology since at least 2008.

    Last September, Seagate announced that its Momentus SED had become the first drive in the laptop encryption drive market to get the important FIPS 140-2 certification that matters so much to public sector organisations.

     

  • Origin Storage 09:35 on 09/02/2011 Permalink | Reply
    Tags: , , , , , , , , , , , , , , , , , Information Security, , , , ,   

    Origin Storage Launches Enigma FIPS Solution For Laptops 

    Origin Storage, a leading manufacturer and distributor of IT storage solutions, has today announced the launch of Enigma FIPS. The FIPS 140-2 solution is the latest in the Enigma range to provide companies of all sizes with a quick and cost effective way to secure laptops using the highest levels of hardware encryption. The Enigma FIPS will be on show at CES in Las Vegas 6-9 January 2011.

    The Enigma FIPS solution incorporates the Seagate Momentus ® Self-Encrypting Drive which has recently secured FIPS 140-2 certification from the U.S. National Institute of Standards and Technology (NIST). The Momentus drive provides hardware-based encryption without performance degradation.

    With remote working becoming an important part of modern day corporate environments, organisations are more likely to issue laptops over standard desktop PCs. Companies are risking the security of sensitive and confidential information as it leaves the physical confines of the traditional office environment. Origin Storage’s launch of Enigma FIPS can put corporate minds at ease, offering the highest levels of security and a competitive price.

    Andy Cordial, MD of Origin Storage comments, “More than 3,300 laptops are lost or go missing at the eight largest airports in Europe, the Middle East and Africa (EMEA) each week and according to new research, six out of ten of these are never claimed. More worryingly, nearly half of the professionals surveyed keep confidential information on their laptops, and over half take no steps to protect that data (research carried out by Ponemon Institute).

    “FIPS 140-2 certification exemplifies Seagate’s commitment to security standards that enable the widespread adoption of encrypting hard drives for laptops and other computers as the explosive growth of laptop PCs puts more sensitive personal and business information at risk,” said Mark Whitby, Seagate’s vice president of EMEA Sales and Marketing. “Certification gives solutions providers like Origin and end-user customers the peace of mind that Momentus ® Self-Encrypting Drives delivers the full power of government-grade security.

    Enigma FIPS is a compatible upgrade with all PC based SATA notebooks designed specifically for the corporate and SME market. Each Enigma hard drive is supplied with the correct fitting kit, pre-mounted and ready to fit straight into the laptop. Developed by WinMagic, MySecureDoc Express has a Pre-Boot Authentication system that allows the user to authenticate using a password. This removes the need for the drive to rely on the laptop’s BIOS, making it possible to upgrade SATA based systems to an Enigma SED.

    “Seagate’s FIPS 140 compliant drive and WinMagic’s MySecureDoc Express self-encrypting drive (SED) management software combine to provide the complete solution for customers that want to upgrade their existing computing systems with the latest government approved encryption technology to protect their sensitive data.”

    “We continue to work closely with Seagate and other SED manufacturers to provide individuals with security tools that are easy to configure, use, and manage at an affordable price. We recognise that SEDs require software to activate the hard drive pre-boot authentication and provide other value added services. These include self-help password recovery and local administration that combine to allow users to take advantage of the latest certified security technology shipping today.” said Garry McCracken, Vice President of Technology Partnerships, WinMagic Inc.

    The Enigma FIPS solution also includes a data transfer cable and Acronis hard drive cloning software, providing a quick and simple way to move existing data from the laptops non-encrypted hard drive to the fully encrypted Enigma solution. Using a high speed USB2 or eSATA connection a full mirror image clone of the existing drive including the Operating System, Applications and all user data is made which limits the downtime required to upgrade the ,mobile worker’s laptop.

    Key Features
    • FIPS 140-2 validated (Level 2)
    • Supports Windows 7 (32 and 64 bit)
    • No BIOS Limitations
    • Password Pre-Boot Authentication
    • 100% Compatible Matched Solution
    • Fits PC Based SATA Laptops
    • Tamper evident coatings
    • Transfer Existing Data With Ease
    • No Speed Degradation
    • Capacities Up To 500GB and Rising

    Benefits
    • Government security standard achieved
    • Always On Entire Disk Encryption Protects All Data On The Drive
    • On The Fly Hardware Encryption Means No Additional System Resource Usage
    • Local administrative role manageability
    • Self-help password recovery options
    • Activation of drive into encrypted state is instantaneous versus the unavoidable “conversion” time needed with standard hard drives
    • Data encryption key does not leave the drive, hence helps prevent cooled-RAM attack and simplifies key management
    • Read Only PBA ( Pre-Boot Authentication) area supports password authentication using drive’s secure partition
    • Crypto erase enables instant secure disposal and repurposing of self encrypting-drive, rendering all existing data unintelligible, and returning it to manufactured state
    • Complete Matched Solution Makes Fitting Quick And Provides 100% Compatibility
    • Included Transfer Kit Clones Existing data Via USB2 or eSATA To Minimise Downtime

     

  • Origin Storage 10:26 on 14/10/2010 Permalink | Reply
    Tags: , , , , , , , , , , , , , , , , Information Security, , , , ,   

    Enigma: The single solution to protect the data on your notebook 

    It is clear that attitudes are changing. It is now very common to work out of a home Office to save time during travel or even simply because today’s professionals have not necessarily got a physical office. As more people have made their laptop their virtual office containing all data critical and essential to their professional activities, the loss or theft of the computer has become a very stressful issue and can lead to serious consequences for companies if data falls into the wrong hands.

    Origin Storage, not satisfied to offer just the external encrypted hard drives, known as the Data Locker, have gone one step further by offering secure internal hard drive solutions for your notebook.

    Encryption to secure all of your data
    The proposed solution is to change the laptop hard drive and replace it with an Enigma SED (self encrypting drive). Thus the new data saved on your laptop will be encrypted (256-bit AES) on-the-fly and no loss of speed is noticeable, on read or write, thanks to a system of hardware encryption and not software, as seen by some manufacturers.

    Ease of deployment and installation
    Enigma disks are delivered with a mounting kit designed to perfectly fit the brand and model of laptop. A cable and cloning software are included with all Enigma drives for facilitating the transfer of your data on your current hard disk to the Enigma solution, which guarantees a maximum level of security for all the stored data. Acronis Cloning software makes a copy of your data and operating system to the new Enigma SED, taking around an hour for 120Gb’s, therefore providing minimum downtime to encrypt your data.

    Once the Enigma SED is installed, Winmagic will ask you to enter an administrator password for each start-up of the notebook; this is what is called PBA (pre boot authentication). If the password entered is correct, then the PC launches the BIOS initialisation phase and then launches the OS.

    Our Enigma drives are already available for many brands of laptops with capacities of 250GB at the price of £232.00 and 500GB at the price of £259.00. Unlike competitors, it is important to note that the Enigma solution requires no annual license or update fees of any kind. The selling price includes the use of the licenses for different software provided throughout the life of your laptop.

    To find the appropriate solution, you can visit the Enigma website (http://www.enigmased.com).

    Enigma disks should be destined for every notebook owner wishing to see data protected under any circumstance (governmental agencies, financial services, healthcare, insurance, military, and many others…). Now, companies with a large park of laptops equipped with traditional hard drives will be forced to change them for a secure solution in order to protect data and ensure compliancy as defined by the ICO.

    The Enigma solution is simple to implement and provides a level of security for all embedded data. If you lose your computer or it is stolen, do not panic. Your data is protected to the highest level of encryption available in the commercial world.

     

  • Origin Storage 10:56 on 14/09/2010 Permalink | Reply
    Tags: , , , , , , , , , , , , , , , , Information Security, , , , ,   

    Seagate’s encrypted hard drive gets security boost 

    Seagate’s Momentus Self-Encrypting Drive (SED) has become the first encrypted laptop hard drive to get the critical FIPS 140-2 certification that the company hopes will finally help boost its sales to US and Canadian government organisations.

    Normally, FIPS 140-2 is just another important check box for security products that want a slice of the government market, but right now the stakes seem higher for the Momentus.

    As the company itself admits, sales of self-encrypting laptop hard drives have been modest at around 1 million units since the drive’s release in 2006. That sounds like a lot of drives, but the equivalent of barely quarter of a million drives per year is a miniscule number when set against sales of non-encrypted hard drives, which number hundreds of millions in a year.

    “The low-hanging fruit will be the military,” said Seagate’s Momentus SED product marketing manager, Joni Clark. Having NIST-approved certification was essential for procurement in this space, she said.

    Achieving FIPS 140-2 after a three-year process would also help the SED in business markets as well as with foreign governments and public sector organisations, fired by an increased interest in self-encrypting drives for insecure devices such as laptops.

    “There is work to do in the sector but adoption is coming,” she said.

    Seagate has been pushing hard with self-encrypting hard drives, forging a partnership with Dell in 2009 to help shift self-encrypting hard drives for more mainstream use, including by business laptop users.

    NIST FIPS 140-2 won’t be enough on its own; the company also needs other drive vendors to embrace the self-encryption technology.

    Despite being a hard drive with onboard encryption, one complication that might have helped slow take-up by rival vendors is the need to integrate third-party management systems with the drive firmware. Seagate’s environment for doing this is called DriveTrust.

    Things have improved on the front since the drive’s 2006 launch – there are now several competing management systems to choose from – but the real boost will come when other hardware vendors offer a separate path for buying drives themselves.

    “When you are a sole source some see this as a weakness,” admitted Clark.

     

  • Origin Storage 14:42 on 21/06/2010 Permalink | Reply
    Tags: , , , , , , , , , , , , , , , , Information Security, , , ,   

    If A Product Hasn’t Got The Right Certification Can It Be Trusted? 

    Let’s pretend that it’s time to elect a world leader. Here are some revealing facts about the three candidates:- Candidate A associates with crooked politicians, and consults with astrologists; he’s had two mistresses; chain smokes and drinks 8 to 10 martinis a day. Candidate B was kicked out of office, twice; sleeps until noon; used opium in college and drinks a quart of whiskey every evening. Finally, Candidate C is a decorated war hero; a vegetarian who doesn’t smoke and only drinks an occasional beer and he has never had ANY extramarital affairs. Who gets your vote? Would it surprise you to discover that Candidate A is Franklin D. Roosevelt; Candidate B is Winston Churchill and Candidate C is Adolph Hitler? All very interesting but what has this got to do with FIPS, encryption or security generally? It proves the point you shouldn’t judge a book by its cover.

    There are numerous organisations who, when looking for a new solution, will draw up a list of attributes products must have to proceed to the evaluation phase. FIPS accreditation, CAPS and CESG all appear regularly on this list of must haves, especially for government bodies. They’re obviously very important but do you know what these acronyms really mean?

    Federal Information Processing Standards (FIPS), according to Whatis.com, are a set of standards that describe document processing, encryption algorithms and other information technology standards for use within non-military government agencies and by government contractors and vendors who work with the agencies. The National Institute of Standards and Technology (NIST) issued the FIPS 140 Publication Series to coordinate the requirements and standards for cryptographic modules which include both hardware and software components for use by departments and agencies of the United States federal government. FIPS 140-2 defines four levels of security, simply named “Level 1″ to “Level 4″. It does not specify in detail what level of security is required by any particular application. A word of warning, FIPS 140 does not purport to provide sufficient conditions to guarantee that a module conforming to its requirements is secure, still less that a system built using such modules is secure.

    CESG is the Information Assurance (IA) arm of GCHQ and is the Government’s National Technical Authority for IA responsible for enabling secure and trusted knowledge sharing, which helps its customers achieve their aims. CESG aims to protect and promote the vital interests of the UK by providing advice and assistance on the security of communications and electronic data. CAPS helps private sector companies to develop cryptographic products for use by HMG and other appropriate organisations. CAPS links the cryptographic knowledge of CESG (the national technical authority for information assurance) with the private sector’s expertise and resources.

    However, a product that doesn’t have accreditation does not automatically mean that it isn’t capable of achieving it. In fact, by its own admission, NIST states that FIPS accreditation should not solely be relied upon suggesting that even if a product is certified, it may not actually be secure. In fact, this was proven in January when a flaw was unearthed in certain hardware-encrypted USB flash drives although it is true that the certification earned by the device in question never claimed it capable of doing what many perceived it should – be impenetrable.

    So just what should organisations examine when drawing up a shortlist of solutions?

    Below are six key factors to consider when evaluating security solutions :

    Accreditation : FIPS, CESG and CAPS have a place, but should not be considered the be all and end all to product selection. While a useful tool in assessing the security of encryption products, it is not a guarantee that a product is secure, the onus is on the end user to understand what they’re using. What they do provide is a benchmark for comparing and contrasting products against. Another solution that meets these criteria, but without the certification, can still be included in the evaluation if you want to make sure you are looking at ALL the options.

    Cryptography : the Advanced Encryption Standard (AES) is a symmetric-key encryption standard adopted by the U.S. government. The standard comprises three block ciphers, AES-128, AES-192 and AES-256. It will depend on the sensitivity of the data whether you need 256 or if 128 would be adequate.

    Data : The United Kingdom currently uses five levels of classification — from lowest to highest, they are: protect, restricted, confidential, secret and top secret. It stands to reason that it depends on the level of sensitivity that is being stored on the device that will determine what standards they would need to have or what kite marks are in place to ensure the level of protection.

    Device : Considering where sensitive data resides will help determine the type of product you need and the standard it should have. If you’re looking to protect mobile devices a central management policy will be required.

    Cost : A number of factors will influence just how much you spend on protecting the data. There is the argument that you can’t put a price on security but it has to make commercial sense. There’s no point having a top of the range encryption solution if the data its protecting is the lunch time sandwich order! By the same token a minimal encryption solution would not be deemed adequate by the ICO should the device contain personal health records transported by a GP. The solution should be appropriate for the data it is protecting.

    Company : A key element, and occasionally forgotten when checking products have the right acronyms, is the credibility of the company you are buying from. It’s products might have all the certifications money can buy but if, it’s been making headlines for being breached, do you want to find out if they’ve got it ‘all sorted’.

    Accreditation does not just happen, organisations have to invest vast sums of money to ensure its products jump through the relative hoops to attain certification. Rather than being blinded by a set of acronyms, you should be steered by your own security policy to determine: what you’re protecting, where it is and how it might get there. Once you’ve collated this data you’ll be in a position to evaluate solutions which will meet these needs. Can you afford to discount the most appropriate technology in the marketplace simply because it hasn’t earened its badge yet!

     

  • Origin Storage 17:12 on 14/06/2010 Permalink | Reply
    Tags: , , , , , , , , , , , , , , , Information Security, , , ,   

    What laptop users should do to defend their data 

    The steady stream of advances in brute force decryption techniques – which started when Russia’s Elcomsoft released the first versions of its Password Recovery suite of utilities around 18 months ago – means that laptop users must now raise their game when it comes to encryption.

    And, says Andy Cordial, Origin Storage’s managing director, as Russian password decryption specialist Elcomsoft’s advances clearly show, it can only be a matter of time before further advances are possible.

    “Elcomsoft’s Password Suite shows how it possible to dramatically speed up the rate at which an application crunches its way through password combinations using advanced hardware techniques,” he said.

    “You only have to look at some of the latest software from Elcomsoft, such as Advanced PDF Password Recovery to realise that it’s now possible to recover a 40-bit RC4 password-coded Adobe PDF file in a matter of minutes,” he said.

    “And if you look at the specification of this package, you begin to realise that certain types of AES encryption are also starting to become crackable, although you are currently talking about the kind of processing power that only governments and large corporations have access to,” he added.

    According to the Origin Storage MD, it is only a matter of time before some coding genius moves the password recovery game on a few more stages, making a lot of encryption technologies on laptops just a few years old, infinitely more crackable.

    “Can the man in the street do this? No, but the man in the testing lab can, and cybercriminals clearly now have access to parallel processing and advanced decryption technologies. It’s not inconceivable that criminal gangs have cracked weaker AES crypto technologies already and are waiting for an opportunity to try out their skills,” he said.

    So what should laptop users do to defend their data?

    Cordial advises users to take a multi-layered strategy to their data encryption by installing the most powerful levels of AES encryption that are currently commercially available and add on an additional layer of defence such as a passphrase security system or a biometric scanner.

    Some of the latest laptops already offer fingerprint scanners as optional extras, although Cordial says that users should be selective as to which biometric applications they use to protect their data.

    Passphrase protection is another valuable extra layer of defence that can be deployed in parallel with encryption. Origin’s own Data Locker Pro range of PIN-encrypted portable hard drives are a classic example of this dual-layer security strategy, he explained.

    “Users of legacy laptops that want to move on up to the benefits of encrypted drives, meanwhile, should look at the Enigma range of secure encrypted drives” he said. “These kits, which start at £249rrp for a 160GB system, include all the software and cables required to migrate a laptop drive’s data over to an encrypted platform,” he added. “As cybercriminals get smarter on the encryption cracking front, so company laptop users must use the best tools at their disposal to defend against their data falling into the wrong hands.”

     

  • Origin Storage 13:25 on 12/06/2010 Permalink | Reply
    Tags: , , , , , , , , , , , , , , , Information Security, , , ,   

    Origin Storage and Acronis Join Forces to Provide Easy Migration 

    Acronis, a provider of easy-to-use backup, disaster recovery and security solutions for physical, virtual and cloud environments, today announced that it has teamed up with Origin Storage to provide an easy to use package which allows users to migrate their operating system, applications, settings and data from hard disk drives (HDDs) to self encrypting drives (SEDs).

    This package comes as part of Origin Storage’s Enigma range which includes the Acronis True Image solution. This package can capture an operating system, including applications, settings and data. The tool will allow users to easily migrate from their existing system to a new SED.

    The package comes with a kit that includes a USB / SATA data transfer cable for ease of installation. Once the image has been migrated, Origin Storage customers can also use encryption capabilities to lock down the data on their SEDs. The encryption data comes courtesy of Winmagic.

    Andy Cordial, managing director at Origin Storage, explains: “Our aim is to provide a complete solution to enable businesses to migrate their system from one source to another. This can sometimes be a complicated process, which is why we have created this package. We looked at several imaging vendors, but Acronis was the obvious choice for its ease of use and reliable technology.”

    David Blackman, general manager Northern Europe at Acronis, said: “As the demand for self encrypted drives continues to rise, Acronis True Image HD has become the preferred solution for vendors like Origin Storage who want to give their customers a proven, reliable product that helps users make the most of their technology investment.”

     

  • Origin Storage 16:35 on 07/05/2010 Permalink | Reply
    Tags: , , , , , , , , , , , , , , , , Information Security, , , ,   

    Laptop users need to raise their encryption game 

    The steady stream of advances in brute force decryption techniques – which started when Russia’s Elcomsoft released the first versions of its Password Recovery suite of `utilities’ around 18 months ago – means that laptop users must now raise their game when it comes to encryption, says Origin Storage.

    And, says Andy Cordial, the storage systems integration firm’s managing director, as Russian password decryption specialist Elcomsoft’s advances clearly show, it can only be a matter of time before further advances are possible.

    “Elcomsoft’s Password Suite shows how it possible to dramatically speed up the rate at which an application crunches its way through password combinations using advanced hardware techniques,” he said.

    “You only have to look at some of the latest software from Elcomsoft, such as Advanced PDF Password Recovery to realise that it’s now possible to recover a 40-bit RC4 password-coded Adobe PDF file in a matter of minutes,” he said.

    “And if you look at the specification of this package, you begin to realise that certain types of AES encryption are also starting to become crackable, although you are currently talking about the kind of processing power that only governments and large corporations have access to,” he added.

    According to the Origin Storage MD, it is only a matter of time before some coding genius moves the password recovery game on a few more stages, making a lot of encryption technologies on laptops just a few years old, infinitely more crackable.

    “Can the man in the street do this? No, but the man in the testing lab can, and cybercriminals clearly now have access to parallel processing and advanced decryption technologies.

    It’s not inconceivable that criminal gangs have cracked weaker AES crypto technologies already and are waiting for an opportunity to try out their skills,” he said.

    So what should laptop users do to defend their data?

    Cordial advises users to take a multi-layered strategy to their data encryption by installing the most powerful levels of AES encryption that are currently commercially available and add on an additional layer of defence such as a passphrase security system or a biometric scanner.

    Some of the latest laptops already offer fingerprint scanners as optional extras, although Cordial says that users should be selective as to which biometric applications they use to protect their data.

    Passphrase protection is another valuable extra layer of defence that can be deployed in parallel with encryption. Origin’s own Data Locker Pro range of PIN-encrypted portable hard drives are a classic example of this dual-layer security strategy, he explained.

    “Users of legacy laptops that want to move on up to the benefits of encrypted drives, meanwhile, should look at the Enigma range of secure encrypted drives that we launched at the Infosecurity Europe show late last month,” he said.

    “These kits, which start at £249rrp for a 160GB system, include all the software and cables required to migrate a laptop drive’s data over to an encrypted platform,” he added.

    “As cybercriminals get smarter on the encryption cracking front, so company laptop users must use the best tools at their disposal to defend against their data falling into the wrong hands.”

     

← Older posts

c
compose new post
j
next post/next comment
k
previous post/previous comment
r
reply
e
edit
o
show/hide comments
t
go to top
l
go to login
h
show/hide help
esc
cancel