Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

document and folder security and encryption

Status
Not open for further replies.

cambo2k

MIS
Feb 7, 2001
111
CA
I am looking for some guidance in setting up controls over document access and individual document security.
We are a Windows shop and the files will be stored on a Windows 2003 server (or W2K, we have some of those left).
So we can use the Windows security and AD working on this access.
However they (the powers that be) want to encrypt doc's and provide security beyond the folder access levels. They want passwords to open the files, prevention of copying and modifying the files and prevent to copying of the information. Adobe has some things in place, however i am not familiar with them.
Any help would be appreciated.

Thanks
 
cambo - I think your server w/security & AD would be able to accomplish most of your goals (copy/modify/view restrictions) - even your applications can provide password protection (MS Word, Adobe, etc...)
However, to truly encrypt your documents & data you'll need something like PGP (( - they're still one of the best out there.
 
Thanks! I will have a look at their stuff! I am also looking at PKI (whatever that is, i will have to research and find out!)
C
 
Have to agree with michigan, PGP is one of the best you can come across. I would avoid using the Windows encryption. Very much fraught with danger and easy to misconfigure and make all files inaccessible. Also it seems that Microsoft will be building a backdoor into its new version of encryption with Vista for the purposes of government oversight. Not very cool
 
I would also stay away from in-app passwords. I've never heard of an app that does as good a job at protecting the files as a good network operating system.
 
I would advise against "staying away" from in-app passwords. The key to security is deploying it in a layered fashion. I would say depend only on in app security, but it certainly adds another layer of security to a solid and secured network model.

CISSP,ISC2 Affiliate & Instructor, MCT, MCSE2K/2K3, MCSA, CEH, Security+, Network+, CTT+, A+
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top