|
Posted by Andrew on November 6, 2007, 8:53 pm
Please log in for more thread options
Don't forget the risk versus reward issue as well. If someone does get your
device are they stealing it because you have International secrets worth
Billions? If so, then even the best encryption will be broken if the foreign
(or our) government has the device in hand and context around the data. Even
applications that encrypt the device, need to allow the boot process to run
to a certain point, so it is most likely not complete device encryption.
There are lots of encrypted transactions that can be hacked if given the
time and money, but most are not worth it. There are easier ways.
My guess is that your secrets and data are not quite that important, and if
anyone gets hold of your device they will do a master reset and either use
it or eBay it. So with the likely scenario in mind, use a PIN to keep
someone from accessing your data on the device, and encrypt the data on the
storage card that can't be protected in any other way.
As mentioned above, there are lots of products available, but many play of
fears and not reality. AV for handhelds is a perfect example. I think strong
PIN is great, and for my password security needs I use eWallet. If my device
is lost or stolen, the theif will look for good stuff, but that is
encrypted, so after a couple tries he will just wipe the device. I can sleep
easy knowing this.
> There are some product on the market that encrypt the internal memory. My
> understanding is that there might be ways of accessing the data even
> having
> strong PIN set up. Otherwise, why would those products be offerred?
> Thank you.
>
> "Steve Riley [MSFT]" wrote:
>
>> Storage card encryption is important because the card can be removed from
>> the device. By encrypting the card, you protect the contents if your card
>> gets stolen.
>>
>> But main memory really doesn't need encrypting, when you think about it.
>> Do
>> you have a PIN configured on your device? If so, then you've got the
>> protection you need. So long as your PIN is good enough to survive
>> guessing
>> attacks to the point where device reset kicks in, encrypting main memory
>> isn't necessary. It would drag down performance without offering any
>> security advantage.
>>
>> --
>> Steve Riley
>> steve.riley@microsoft.com
>> http://blogs.technet.com/steriley
>> http://www.protectyourwindowsnetwork.com
>>
>>
>> > I am using Mogul HTC 6800 with Windows Mobile 6. I'm looking for a
>> > solution
>> > to encrypt the data, there is an option to encrypt the storage card but
>> > not
>> > the build in storage. Is there an option to install Outlook on the
>> > storage
>> > card instead to encrypt it? Do you have any suggestions?
>> >
>> > Thank you.
>>
>>
| 
XML Sitemap