WyomingKnott
Legenda in Aeternum
- Aug 29, 2006
- 13,249
- 3
- 51,960
No, but I can look for the various articles on why you should never use external FDE on an SSD. Seriously, there are a few. For one thing, the software makers specifically state that it's not secure, because writing the encrypted data back over the same block leaves the unencrypted version somewhere else. So a serious attacker could read your disk.
Plus, there is massive write amplification.
Look for a self-encrypting SSD. In the meantime, if I find the articles, I'll post links.
Plus, there is massive write amplification.
Look for a self-encrypting SSD. In the meantime, if I find the articles, I'll post links.
WyomingKnott
Legenda in Aeternum
- Aug 29, 2006
- 13,249
- 3
- 51,960
Well, no SSD will perform well with these. They are known SSD-killers. The best thing that you can do is to start encryption on the disk while it is blank; that will be better then post-encrypting a loaded disk.
If the company's security officer is willing to listen, and if I find the links, you might get him/her to try a self-encrypting SSD instead of a setup that is known to work poorly and have security risks.
If you are not sick of me already, have a look at my post in this thread: http://www.tomshardware.com/forum/268261-32-full-disk-encryption . It has links to the articles. To quote the TrueCrypt site: "Due to security reasons, we recommend that TrueCrypt volumes are not created/stored on devices (or in file systems) that utilize a wear-leveling mechanism (and that TrueCrypt is not used to encrypt any portions of such devices or filesystems). "
If the company's security officer is willing to listen, and if I find the links, you might get him/her to try a self-encrypting SSD instead of a setup that is known to work poorly and have security risks.
If you are not sick of me already, have a look at my post in this thread: http://www.tomshardware.com/forum/268261-32-full-disk-encryption . It has links to the articles. To quote the TrueCrypt site: "Due to security reasons, we recommend that TrueCrypt volumes are not created/stored on devices (or in file systems) that utilize a wear-leveling mechanism (and that TrueCrypt is not used to encrypt any portions of such devices or filesystems). "
TRENDING THREADS
-
-
News Firefox user loses 7,470 opened tabs saved over two years after they can’t restore browsing session- Started by Admin
- Replies: 58
-
News Apple debuts M4 processor in new iPad Pros with 38 TOPS on neural engine
- Started by Admin
- Replies: 80
Facebook
Twitter
Instagram