Basic Ideas
As long as the operating system is running on a system, access to the files will have to go through OS-controlled user authentication and access control lists. If an attacker gains physical access to the computer, however, this barrier can be easily circumvented. One way would be to remove the disk and put it in another computer with an OS installed that can read the filesystem, or simply reboot the computer from a boot CD containing an OS that is suitable to access the local filesystem.
The most widely accepted solution is to store the files encrypted on the physical media (disks, USB pen drives, tapes, CDs and so on).
In the Microsoft Windows family of operating systems EFS enables this measure, although on NTFS drives only, and does so using a combination of public key cryptography and symmetric key cryptography to make decrypting the files extremely difficult without the correct key.
However, the cryptography keys for EFS are in practice protected by the user account password, and are therefore susceptible to most password attacks. In other words, encryption of files is only as strong as the password to unlock the decryption key.
Read more about this topic: Encrypting File System
Famous quotes containing the words basic and/or ideas:
“The basic test of freedom is perhaps less in what we are free to do than in what we are free not to do. It is the freedom to refrain, withdraw and abstain which makes a totalitarian regime impossible.”
—Eric Hoffer (1902–1983)
“The only chance for victory over the brainwash is the right of every man to have his ideas judged one at a time. You never get clarity as long as you have these packaged words, as long as a word is used by twenty-five people in twenty-five different ways. That seems to me to be the first fight, if there is going to be any intellect left.”
—Ezra Pound (1885–1972)