Full Disk Encryption RRS feed

  • Question

  • Hi,

    We are looking to deploy Windows 10 and Windows server 2016 (with ADDS) the minimum standards for Full Disk Encryption:

    1. FIPS 140-2 compliant encryption on all user and client data residing on user workstations (laptops, desktops)

    2. 100% of user and client data (including all data in business applications and locally stored databases) on workstations is encrypted
    3. 100% of removable media (USB drives, CDs, DVDs, external hard drives) are required to be encrypted
    3. Encryption code protection is configured so that end users are not able to uninstall or change configurations (ie change policy or turn off)
    4. Method is available to recover information on device if key is lost by end user (ie file backup/restore or key recovery process)
    5. A formal monitoring process is put into place and enforced to ensure that 100% of workstations are encrypted
    6. Freeware/open source versions of any encryption technology are not considered acceptable
    Wednesday, February 15, 2017 7:16 AM


All replies