<body><script type="text/javascript"> function setAttributeOnload(object, attribute, val) { if(window.addEventListener) { window.addEventListener('load', function(){ object[attribute] = val; }, false); } else { window.attachEvent('onload', function(){ object[attribute] = val; }); } } </script> <div id="navbar-iframe-container"></div> <script type="text/javascript" src="https://apis.google.com/js/platform.js"></script> <script type="text/javascript"> gapi.load("gapi.iframes:gapi.iframes.style.bubble", function() { if (gapi.iframes && gapi.iframes.getContext) { gapi.iframes.getContext().openChild({ url: 'https://www.blogger.com/navbar.g?targetBlogID\x3d3323185\x26blogName\x3dbarnskiblog\x26publishMode\x3dPUBLISH_MODE_BLOGSPOT\x26navbarType\x3dBLUE\x26layoutType\x3dCLASSIC\x26searchRoot\x3dhttps://barnski.blogspot.com/search\x26blogLocale\x3den_US\x26v\x3d2\x26homepageUrl\x3dhttp://barnski.blogspot.com/\x26vt\x3d5885749210978744567', where: document.getElementById("navbar-iframe-container"), id: "navbar-iframe", messageHandlersFilter: gapi.iframes.CROSS_ORIGIN_IFRAMES_FILTER, messageHandlers: { 'blogger-ping': function() {} } }); } }); </script>

barnskiblog

Barney's blog. Just a load of old shite really.


I've always been interested in computer and network security, which is fortunate as I get to do a fair bit at work these days. Recently, I've been looking at personal data encryption, i.e. how I can protect the data on my machines from being compromised, as it sometimes includes customer data that I want to keep private.
The best thing I can do (obviously) is to use a Mac. Both FileVault and encrypted disk images are built-in features and provide robust mechanisms for encrypting data so that it can't be compromised should a machine be stolen.
However, for now, I still use a Windows XP laptop for most of my work (although the move to OS X is imminent :) ) and I also use Linux file servers and workstations. Whilst Windows' EFS is OK, it's not too portable as it only works on Windows, and is difficult to manage in a non-domain environment as it's certificate-based. (Also, if you don't know what you're up to, you can permanently and irrevocably lock yourself out of your own data in some circumstances, even if you know all your passwords).
Recently, I finally got round to trying TrueCrypt as recommended by Steve Gibson on Security Now!, and I have to say, it rocks!
I now have all my important data safe in nicely encrypted files, and can access them on Windows and Linux (OS X support is apparently on the way) using only strong passwords, so if my laptop does go missing, I can rest easy knowing that the customer information on it is safe from prying eyes.
« Home | Next »
| Next »
| Next »
| Next »
| Next »
| Next »
| Next »
| Next »
| Next »
| Next »