|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: Controlling Admin Access
From: Pidgorny, Slav (slav.pidgorny
anz.com)
Date: Mon Feb 02 2004 - 17:21:43 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Inline:
> -----Original Message-----
> From: Michael Cox [mailto:mscox42yahoo.com]
> Is anyone doing anything to mitigate the potential
> risks involved with access to, say, an executive's
> computer which could have very sensitive data on it
> (mergers and acquisitions, for example)?
I think that executive staff should trust to some IT support personnel, to start with. Considering the requirements for backing up and sharing such information, I cannot imagine such information stored and maintained securely on a desktop/laptop system by the executives.
> One obvious answer is encryption, but I'm curious what
> is available in the Windows world as I'm not as
> familiar with that.
Windows EFS (Encrypting File System, an NTFS feature) gives you one obvious option - see, for example, www.microsoft.com/windows2000/techinfo/howitworks/security/encrypt.asp
You can - and should - consider Windows Rights Management Services (http://www.microsoft.com/windowsserver2003/techinfo/overview/rm.mspx)
For both, you can restrict domain admins from viewing classified data. Of course, you should plan for disaster recovery carefully.
HTH,
Svyatoslav Pidgorny, MS MVP, MCSE
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]