1.Full Disk Encryption (FDE) uses pre-boot authentication.
Is it true that over 50% of companies turn it off?
Yes, it’s true. Industry analysts report that as many as 50% of companies turn off pre-boot authentication. It’s no secret why: it seriously impacts the user experience and users complain. What's more...
Yes, it’s true. Industry analysts report that as many as 50% of companies turn off pre-boot authentication. It’s no secret why: it seriously impacts the user experience and users complain. What's more, it can seriously limit software asset tracking tools. CREDANT provides a higher level of security without requiring pre-boot authentication.
2.You can't control client activation with FDE. You start the process and proceed until it finishes (or breaks).
With FDE you can’t deploy encryption agents and control when they are activated. So there’s no way to prevent user impact on deployment. The encryption process...
With FDE you can’t deploy encryption agents and control when they are activated. So there’s no way to prevent user impact on deployment. The encryption process is either on or off. With CREDANT you can deploy thousands of agents without users ever knowing that it occurred and the encryption can be gradually activated over the course of a day, weeks or months without impacting the user.
3.Encrypting a laptop with FDE takes about 12 hours.
What happens if something goes wrong?
If something goes wrong during FDE encryption there is a high probability that the computer will become a brick. What's a brick?...
If something goes wrong during FDE encryption there is a high probability that the computer will become a brick. What's a brick? It's what your computer becomes when FDE recovery tools can’t restore the core FDE components. CREDANT uses a different technology that works with the OS and is not susceptible to the high error rates of FDE. If a disk failure occurs, errors are absorbed by the file system or at worst impact a single file. Even if the entire operating system gets deleted data recovery is possible using standard data recovery tools. No proprietary tools or processes required.
4.FDE encrypts everything on the hard drive including
applications such as Word. Does that impact performance?
Yes, because the executables are encrypted they must be decrypted before they can be used. This means the Word application has to be decrypted prior to opening your document...
Yes, because the executables are encrypted they must be decrypted before they can be used. This means the Word application has to be decrypted prior to opening your document. For most users a few second delay is a lifetime and the complaints come in! With CREDANT encrypting applications is optional not mandatory.
5.With FDE a typical break-fix scenario requires about
7 hours. Why does it take so long?
With FDE, the Recovery Disk that automatically repairs/re-installs the damaged files cannot read the drive because everything on the drive including the OS has been encrypted...
With FDE, the Recovery Disk that automatically repairs/re-installs the damaged files cannot read the drive because everything on the drive including the OS has been encrypted. With CREDANT, a typical break-fix scenario requires about 90 minutes because critical system files that are needed to boot the system are not encrypted and the same support procedures that you have been using for years will still apply, with no increased support effort, cost, or risk of exposing confidential data.
