DISK Protect™ is a hard disk encryption solution
DISK Protect is a full disk encryption solution for laptop and desktop computers. DISK Protect provides:
- Full disk encryption. DISK Protect transparently encrypts a computer's hard disk(s), automatically encrypting and decrypting data on the fly so that applications can be used as normal. If an unauthorized user attempts to access the hard drive directly, without going through the User Authentication process, the data remains encrypted and unusable. If the hard drive is later disposed of, any data it contains is unintelligible, even if specialist data recovery tools are used.
- Boot-time authentication. DISK Protect can be configured to call for a strong password or a token and a PIN. Authenticating the user at boot-time means that the operating system may be encrypted to prevent unauthorised data access using low-level tools. DISK Protect is compatible with most of the widely used tokens and smart cards.
- Removable media encryption. DISK Protect encrypts mass storage devices, such as USB thumb drives and floppy disks, to protect data in transit.
Once the user has been authenticated, DISK Protect is transparent and standard applications can be used as normal. DISK Protect 4.2 supports up to 26 password user accounts, or an unlimited number of token and PIN user accounts, per protected machine. Each User has a unique password (or token and PIN) which is used to authenticate him or her and 'unlock' the computer. A user may have DISK Protect accounts on several protected machines. DISK Protect 4.2 features Single Sign-On, and provides secure mechanisms for unlocking the protected machine if the user has forgotten his or her password or PIN. An easy-to-use Management Tool permits an Administrator to create and manage user accounts and to reconfigure the local machine policy, and permits users to manage their own DISK Protect accounts and their Removable Media Keys.
DISK Protect is currently undergoing FIPS 140-2 Level 1 validation, and may optionally be installed in a FIPS-compliant mode.
DISK Protect Removable Media Encryption may be purchased and installed as a separate module (if full disk encryption is not required). This option encrypts the data written to removable media and may either employ a personal Encryption Key or a shared Encryption Key (to permit users to share data). If the removable device contains unencrypted data, the user can opt to preserve the data during device encryption. Devices may be password protected to permit secure access by non-DISK Protect users.
| |
Summary of features |
| FIPS certifcation |
YES AES, FIPS197 SHA-256, FIPS180-2 FIPS140-2 pending |
| Full disk encryption |
YES |
| Encryption algorithm |
AES 128-bit Key |
| Hashing algorithm |
SHA-256 |
| Operating Systems |
Windows 2000 Windows 2000 Server Windows Server 2003 Windows XP Windows XP Tablet |
| Token Support |
Optional Aladdin R2e and eToken PRO USB tokens RSA 5100, 5200, 6100 and SID800 Smart Cards Cryptoflex Smart Card Setec Smart Card |
| Passwords |
Length, format, lifetime and history can all be defined during installation User can choose his or her own password (in accordance with the password policy) |
| Tablet support |
YES with virtual keyboard to allow pre-boot authentication |
| Secure hibernation |
YES |
| Removable media encryption |
YES |
| Multi-user |
YES |
Device Recovery (remote recovery after password failure) |
YES |
| Protect Manager support |
YES |
| Key Material |
automatically generated high quality keys |
| Generation of deployment packages for remote deployment |
YES |
For more information about DISK Protect or the Removable Media Module, either download the
DISK Protect 4.2 product sheet, or the
Removable Media Module product sheet,
or email us at
info@becrypt.com.
 |
To open and print these documents you will require Adobe Acrobat Reader. Click here to download a free copy. |