Full disk Encryption and Pre-boot Authentication

Challenges and opportunities

Employees frequently work from remote locations and the number of laptops in use by business and government organizations is constantly increasing. Leakage of sensitive data due to a lost or stolen laptops is not only costly, it can have devastating consequences. File and folder encryption solutions provide limited protection and depend on end-users adhering to an appropriate security policy. Even full disk encryption may not adequately protect mobile data without proper management of the associated security credentials. For this reason, full disk encryption solutions should be integrated with strong two factor authentication.
 

Solutions description   Benefits
Full disk encryption products coupled with Gemalto strong authentication provide the highest level of protection for internal and external computer hard drives as well portable media devices. Strong authentication is used to validate the user’s identity before encryption and decryption.

In addition, a pre-boot authentication solution can be installed and executed at BIOS level. It requires the user to present valid credentials to decrypt the OS-hosting drive and then launch the standard boot process of the machine.

  
  • Provides constant protection for data on desktops, laptops, mobile devices, removable media and portable storage devices
  • Secures a broad range of information including customer data, intellectual property, legal and financial information, and employee records.
  • Ensures compliance with data breach and privacy regulations
Components   Technology Partners
Several companies offer Full Disk Encryption and pre-boot Authentication solutions. The following products work with Classic TPC smart cards, Gemalto .NET smart cards and tokens to enable seamless two factor authentication for disk encryption applications: