I learned of the encryption of folders on WinXP. Pro (Right mouse click on a folder, select Properties. Then click the “Advanced…” button on the General tab. Last option will encrypt the contents in that folder.)
I guess this is really great if someone steals your hard drive and can’t login as you or I would assume as the the administer. The private key seems to be created and stored on the hard drive. See Internet Options, Content tab, and click “Certificates…”
You can export this key say to a floppy, and the files are safe even from you. Well, until you install the certificate, after rebooting, onto the hard drive again. Installing it seems like it defeated the whole purpose for storing it on the floppy.
It would make more sense, and maybe there is an option somewhere, that would allow the user to be prompted for the key, but not install, so you could work on the data and walk away without having to remember to uninstall the key.
It would be totally awesome if that key was on a smart card or protected by thumbprint authentication or what not.
This is another intriguing interest for me to look into security stuff more, but I have too many interests.
Posted by Michael at January 14, 2004 09:12 PM