File and Folder Encryption
What it does
Supports ‘defense in depth’ of sensitive data, allowing more granular control over access to the data.
How it works
Individual folders and/or files within an encrypted hard drive can be encrypted with their own access rights and restrictions. Even if a user has authenticated at pre-boot to the machine, if they do not have rights to the file or folder, they will be unable to access the contents.
File Folder Encryption allows users to encrypt a top level folder (or a full data partition), e.g. My Documents or (F: drive). The goal is to encrypt everything underneath (transparently), and leave it encrypted. In addition, FFE can encrypt ON TOP of the encrypted hard drive, so users can restrict access to personal files locally or on the network. All files under a single folder or data partition are automatically encrypted. FFE increases the security of sensitive files by encrypting information on top of regularly fully encrypted hard drives. Users simply have to drag and drop files into encrypted folder. Encryption is transparent regardless of application. White/Black List functionality means that only specific applications can access files (eliminating internal threats, e.g. viruses). SES administrators can assign FFE directly as a policy. Encrypted data can easily be shared based on “group” key sharing, e.g. sharing files locally as well as on network share.
