9.4. Full Disk Encryption
In some cases, the technologies we've mentioned will not meet the burden of criteria of a corporation's security policies. While FileVault on a technology level provides very strong encryption, it is not without its own limitations. At its heart, FileVault is a user-specific technology, and in fact it only seeks to protect an individual user's data. The main issue is that it leaves to chance the idea that a user will actually utilize their own home directory for document storage. In fact, users have a number of places where they can tuck away data, and certainly not all of these fall under the purview of their own home directory. Consider for instance the directory found at /Users/Shared, which is globally writeable, ...
Get Enterprise Mac Security: Mac OS X Snow Leopard now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
