Whole disk encryption

Unfortunately with more and more states passing regulations
mandating notification processes in the event of electornic
Information breach; it seems that disk encryption in an
enterprise environment will soon be the norm rather than the
exception.


Spencer D. Hall
Sr. Network Analyst/Information Security Officer
St. Vincent's Health System
Ascension Health Information Services
South Region Jacksonville


>>> Sarah <sfelskebgsu.edu> 08/24/06 13:14
PM >>>


What is the consensus of the group on the use of whole disk
encryption in 
an enterprise environment? 


------------------------------------------------------------
---------------
------------------------------------------------------------
---------------



-----------------------------------------
NOTICE: This message is confidential, intended for the
named
recipient(s) and may contain information that is (i)
proprietary to
the sender, and/or, (ii) privileged, confidential and/or
otherwise
exempt from disclosure under applicable Florida and federal
law,
including, but not limited to, privacy standards imposed
pursuant
to the Federal Health Insurance Portability and
Accountability Act
of 1996 ("HIPAA"). Receipt by anyone other than
the named
recipients(s) is not a waiver of any applicable privilege.
If you
are not the intended recipient, please contact the sender by
reply
e-mail and destroy all copies of the original message. Thank
you in
advance for your compliance with this notice.


------------------------------------------------------------
---------------
------------------------------------------------------------
---------------

You might consider checking out Utimaco's SafeGuard Easy. 
We run an IBM
shop in house and it integrates with the Trusted Platform
Management
(TPM) chip. 

-----Original Message-----
From: Spencer Hall [mailto:SHALLstvincentshealth.com] 
Sent: Thursday, August 24, 2006 2:20 PM
To: sfelskebgsu.edu; focus-mssecurityfocus.com
Subject: Re: Whole disk encryption

Unfortunately with more and more states passing regulations
mandating
notification processes in the event of electornic
Information breach; it
seems that disk encryption in an enterprise environment will
soon be the
norm rather than the exception.


Spencer D. Hall
Sr. Network Analyst/Information Security Officer St.
Vincent's Health
System Ascension Health Information Services South Region
Jacksonville


>>> Sarah <sfelskebgsu.edu> 08/24/06 13:14
PM >>>


What is the consensus of the group on the use of whole disk
encryption
in an enterprise environment? 


------------------------------------------------------------
------------
---
------------------------------------------------------------
------------
---



-----------------------------------------
NOTICE: This message is confidential, intended for the named
recipient(s) and may contain information that is (i)
proprietary to
the sender, and/or, (ii) privileged, confidential and/or
otherwise
exempt from disclosure under applicable Florida and federal
law,
including, but not limited to, privacy standards imposed
pursuant
to the Federal Health Insurance Portability and
Accountability Act
of 1996 ("HIPAA"). Receipt by anyone other than
the named
recipients(s) is not a waiver of any applicable privilege.
If you
are not the intended recipient, please contact the sender by
reply
e-mail and destroy all copies of the original message. Thank
you in
advance for your compliance with this notice.


------------------------------------------------------------
------------
---
------------------------------------------------------------
------------
---






------------------------------------------------------------
---------------
------------------------------------------------------------
---------------

To clarify: It is unfortunate that there have been an
increasing number 
of information breaches, not unfortunate that more
enterprises are 
adopting strong crypto solutions.

-flurdoing

Spencer Hall wrote:
> Unfortunately with more and more states passing
regulations mandating notification processes in the event of
electornic Information breach; it seems that disk encryption
in an enterprise environment will soon be the norm rather
than the exception.
>
>
> Spencer D. Hall
> Sr. Network Analyst/Information Security Officer
> St. Vincent's Health System
> Ascension Health Information Services
> South Region Jacksonville
>
>
>   
>>>> Sarah <sfelskebgsu.edu> 08/24/06 13:14
PM >>>
>>>>         
>
>
> What is the consensus of the group on the use of whole
disk encryption in 
> an enterprise environment? 
>
>
>
------------------------------------------------------------
---------------
>
------------------------------------------------------------
---------------
>
>
>
> -----------------------------------------
> NOTICE: This message is confidential, intended for the
named
> recipient(s) and may contain information that is (i)
proprietary to
> the sender, and/or, (ii) privileged, confidential
and/or otherwise
> exempt from disclosure under applicable Florida and
federal law,
> including, but not limited to, privacy standards
imposed pursuant
> to the Federal Health Insurance Portability and
Accountability Act
> of 1996 ("HIPAA"). Receipt by anyone other
than the named
> recipients(s) is not a waiver of any applicable
privilege. If you
> are not the intended recipient, please contact the
sender by reply
> e-mail and destroy all copies of the original message.
Thank you in
> advance for your compliance with this notice.
>
>
>
------------------------------------------------------------
---------------
>
------------------------------------------------------------
---------------
>
>
>   


------------------------------------------------------------
---------------
------------------------------------------------------------
---------------