Avoiding Data Loss—Planning for Recovery
Before EFS is used, a recovery plan should be developed and put into place. Unfortunately, EFS is enabled by default, and few organizations create and implement an effective EFS policy before users are logged on to the system. Users can easily encrypt and decrypt files without realizing that they should be archiving keys. Using EFS to encrypt and decrypt files is easy. On the other hand, while recovery is not difficult, it requires thought and potentially substantial action. Private keys must be archived and protected.
Recovery Plans for Standalone Systems and Domains Without CAs
It will be difficult to institute a plan for EFS file recovery based on end users' archival of EFS keys. Most users don't back ...
Get Windows Server 2003 Security: A Technical Reference now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
