Pre-Boot Authentication
Hard drive encryption using pre-boot authentication ensures unauthorized users cannot view (in a decipherable format), or modify the contents of the operating system and file system. This includes critical system files such as temporary, registry, memory page and hibernation files.
Successful authentication by the user allows the decryption of the actual operating system files, enabling system boot and access to all encrypted data on the device
Masterboot record virus Protection
ProtectDrive incorporates master boot record virus protection to secure the master boot record against manipulation, virus or malicious software.
The master boot record on all boot devices (with or without encryption software) must always contain a boot loader that is in the clear (readable format) to enable pre-boot system initiation. Upon pre-boot initiation, ProtectDrive scans the boot loader identifying and correcting abnormalities such as manipulated code or viruses that may facilitate access to encrypted data.
Hibernation Protection
Information that is in active memory is automatically written to the hard drive in encrypted format immediately upon initiation of the computers hibernation function. User authentication is required to wake the device from hibernation and reactivate the operating system.
Single and two-factor Authentication
ProtectDrive facilitates increased log-in security utilizing two-factor authentication where smart cards or tokens securely store a private key that is unlocked by the user password. ProtectDrive utilizes the private key to authenticate the user’s identity and to decrypt the symmetric disk key, which is then used to decrypt data residing on the hard drive.
|
