O'Reilly logo

Microsoft® Windows Server 2003: Administrator’s Companion by Jason Gerend, Sharon Crawford, Charlie Russel

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Securing Local Data

Encryption of stored files in Windows Server 2003 is accomplished through the use of EFS. Using public-key encryption, EFS allows files and directories stored on NTFS partitions to be encrypted and decrypted transparently. EFS accesses the user’s EFS public and private keys to perform self-encryption. Therefore, files encrypted with EFS can’t be shared with (that is, encrypted to) other users. Another encryption method, such as S/MIME, must be used to securely share files with other users. In addition, if files encrypted with EFS are saved to another machine, the user’s key information must be imported to that machine for decryption to occur.

Files are automatically encrypted to a third party, called a recovery agent. In ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required