Risk
11/17/2010
12:03 PM
Connect Directly
RSS
E-Mail
50%
50%

Dell Introduces File Level Encryption

Available in locally and centrally managed options, Dell Data Protection Encryption, includes policy templates to support regulatory compliance and reporting.

Dell Data Protection Encryption Remote Management Console
(click image for larger view)
Dell Data Protection Encryption Remote Management Console

According to Dell, the encryption offered by Dell Data Protection Encryption is Federal Information Process Standards validated, and "provides auditing and regulatory compliance management for industry, federal and state regulations like the Healthcare Insurance Portability and Accountability Act and Payment Card Industry Data Security Standards."

Unlike whole-disk encryption, file-level level encryption does not need to interfere with IT administration, patching, backup or migration.

"Sector-based encryption, which treats encryption as a drive technology, has deployment and other issues," observed Konetski. "Deploying file-based encryption, for example means there is no need to erase disks and to Chkdsk or reformatting on a drive to make sure there are no bad sectors and no data left visible. Backups don't require full decryption, and, Konetski said, "To migrate data for machine end-of-life, or in the event of a catastrophic failure, you simply move files over and transfer the keys. When we developed this product, we had experience in deploying and supporting encryption on endpoints. So we are familiar with the pain points in wanting to do and maintain encryption."

Dell Data Protection Encryption includes compliance templates to help set up policies that comply with the relevant regulations and generate needed reports. According to Dell, the files to be encrypted can be specified, for example, based on end-user profile, data sensitivity and compliance needs.

Volume licensing is available for Dell and non-Dell systems for both Windows and Mac. Through a relationship with Credant, Dell offers optional support for encryption on select smartphones and non-Windows OS. There is also a stand-alone version of the solution that can be used by end-users.

Pricing for the SMB version is $59.99/seat, and includes a local management console. Pricing for the managed enterprise version seats is $85/seat for 1 to 999 seats, including console and client agent.

Previous
2 of 2
Next
Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0993
Published: 2014-09-15
Buffer overflow in the Vcl.Graphics.TPicture.Bitmap implementation in the Visual Component Library (VCL) in Embarcadero Delphi XE6 20.0.15596.9843 and C++ Builder XE6 20.0.15596.9843 allows remote attackers to execute arbitrary code via a crafted BMP file.

CVE-2014-2375
Published: 2014-09-15
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to read or write to arbitrary files, and obtain sensitive information or cause a denial of service (disk consumption), via the CSV export feature.

CVE-2014-2376
Published: 2014-09-15
SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

CVE-2014-2377
Published: 2014-09-15
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to discover full pathnames via an application tag.

CVE-2014-3077
Published: 2014-09-15
IBM SONAS and System Storage Storwize V7000 Unified (aka V7000U) 1.3.x and 1.4.x before 1.4.3.4 store the chkauth password in the audit log, which allows local users to obtain sensitive information by reading this log file.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
CISO Insider: An Interview with James Christiansen, Vice President, Information Risk Management, Office of the CISO, Accuvant