Technical Specifications and Options
124 |
Endpoint Encryption for Files and Folders Client
• Windows 2000 SP4 with RollUp1, XP SP2, Vista SP1. Please see section
Installing Endpoint Encryption for Files and Folders client for additional
client
OS requirements.
• 256MB RAM
• 5MB Free hard disk space
• Pentium compatible processor
• TCP/IP network connection
Encryption Algorithms
Endpoint Encryption supports many custom algorithms. Each encryption key generated
for Endpoint Encryption for Files and Folders may be associated with a separate
algorithm.
Algorithm performance is based on the “PassMark” rating which gives an overall
indication of system performance. All tests were performed on a K6-II-300 machine
running Windows XP SP2. This test platform has a PassMark of 20.7. The closer to this
figure an algorithm gets, the less the impact of Endpoint Encryption on the user.
Faster machines will achieve correspondingly faster passmark ratings, but the
percentage difference between them will be comparable.
RC5-12
CBC Mode, 1024 bit key, 12 rounds, 64 bit blocks. PassMark 20.7 (100%). The RC5-12
algorithm is compatible with the Endpoint Encryption 3.x algorithm.
RC5-18
CBC Mode, 1024 bit key, 18 rounds, 64 bit blocks, PassMark 20.7 (100%). The 18
round RC5 variant is designed to prevent the theoretical “Known Plaintext” attack.
AES 256 (FIPS 140-2 Approved) - recommended
CBC Mode, 256 bit key, 128 bit blocks, PassMark 19.3 (93%)
This algorithm is approved for FIPS 140-2 use.
Data wiping standard
The wiping mechanism follows the data shredding specification of US Department of
Defense (DoD). The specification detail may be found in:
Comentarios a estos manuales