| |
| SpyProof | |
|
Concerned about the security of your sensitive data but find file encryption too time consuming? Imagine a disk drive that automatically encrypts all data blocks written to it and then transparently decrypts them for any application as long as you’re logged in. Once you logout, your special disks are completely unreadable by unauthorized users... and thieves. That’s SpyProof! 
Want to distibute sensitive company documents, movies,
or music by burning the files onto a CD/DVD that only a limited number
of employees or authorized customers can view? SpyProof! provides the
answer!
SpyProof! makes protecting your data a snap even if you are only a casual computer user. Whenever you log in to your Windows account and enter your passord, your SpyProof! disks will behave like normal drives. You can even place your My Documents and Temp folders on one for maximum security under Windows.
To create a "SpyProof! disk," you open the Create Disk dialog using the context menu:
associated with the SpyProof! icon
Simply name the disk, specify your credentials, select an encryption cipher (128-, 192- or 256-bit AES), and specify the disk's location and size. You may set the Windows drive letter to be assigned to the mounted disk (or simply let it default to the next available drive letter) and control other options using the Options tab:
The Additional Users tab allow you to grant access to the disk to others before it is created. Additional users may be added or removed from the access control list (and the disk re-keyed) at any time. When an authorized user "mounts" a SpyProof! disk using their private key and password (or cryptographic token and PIN), Windows assigns a drive letter to it. At this point the disk functions exactly like a normal drive except that all data written to it is encrypted and all data read from it into memory is decrypted on-the-fly. These cryptographic operations are performed in a completely user-transparent manner. AES is so fast you won’t even notice a decrease in disk I/O performance! A user-configurable hotkey can be assigned to quickly unmount all mounted disks. Individual disks can also be manually unmounted, or you can let Windows unmount them when you logoff, hibernate, or shutdown your system. SpyProof! may be used independently or alongside SecretAgent®. If SecretAgent is installed, SpyProof! can use its profile settings and can access all of your local, CAPI, and LDAP certificate stores. SpyProof! also reads PolicyAgent registry settings so administrators can establish a consistent security policy (including the specification of trusted root certificates, the enforcement of CRL checking, etc.) for both SecretAgent and SpyProof! using the same tool! If SecretAgent is not installed, SpyProof! uses Windows’ native CAPI module for private key storage, certificate retrieval and chain validation, and PKCS#11 token support.
Groups of users can securely share SpyProof! disks located on a shared network drive. However, the current release of SpyProof! only permits one authorized user to mount a disk at a time. Like books, disks can be shared, but cannot be simultaneously used by more than one user .
An automount disk is automatically available each time you start SpyProof! and enter its password. Manual disks can be mounted at any time using the context menu attached to SpyProof!’s system tray icon:
To change the type of a disk, select it in SpyProof!’s Disk Manager and click the appropriate type button on the toolbar. It’s that easy!
SpyProof! has been tested with tokens from ActivCard, Aladdin, Datakey, Gemplus, Litronic, Rainbow, and Schlumberger, and also works with DoD Common Access Cards. Please contact ISC for a complete list of supported tokens.
Each user’s private key may be stored in: a PIN-protected PKCS#11 hardware token, a SecretAgent password-encrypted TDES-based PKCS#8 file, or your Windows CAPI store.
|
in
the Windows system tray.
|
