Hi all,
Our IT shop supports a financial instituion where Gramm-Leach-Bliley (the "Privacy Act") is of importance. The bank examiners are tellling the bank that notebook computers need to be protected in the event of theft, loss, etc.
Beyond implementing the normal things (such as power on passwords, OS best practices, etc.) the examiners want notebook drives encrypted. Their concern is that a drive from one machine could be moved to another machine and read. When we mentioned hard disk passwords, they wanted more information regarding the implementation.
I know the Thinkpad hard disk password "follows" the drive. We have tested the disk password is "user+master" mode it and it works great.
Still, I would like to hear everyone's opinion on whether this is an adequate security measure for protecting the hard drive data (rather than encrypting it.) If there are work-arounds to the password, I would like to know that they exist, though I really don't want to how to do it. I would also be interested in other thoughts you might have on the subject.
Thanks,
Greg
_______________________________________________
Thinkpad mailing list
Thinkpad@stderr.org
http://stderr.org/cgi-bin/mailman/listinfo/thinkpad
Received on Sun Feb 1 16:32:28 2004
This archive was generated by hypermail 2.1.8 : Fri May 26 2006 - 16:02:02 EDT