Keeping data safe if notebook is stolen

Are there any bulletproof methods to keep private information private, if it's on your notebook and your notebook is stolen?

I've heard of hard drives with data encryption, and I've heard fingerprint readers offer some additional levels of security.

This hasn't happened to us, but if there isn't a way to make data really secure, then we'll need to be more selective about what data is kept on the notebook. Not that I have important data that would be useful or interesting to anyone, but just a general concern.

The Vostro 1400 (which we've been seriously considering) doesn't have a fingerprint reader option, and as far as I know doesn't offer an encrypted hard drive either. If it's important to us, maybe the 1400 isn't the right choice????

 

lenovo and hp have fingerprint reader options on their notebooks. if you want the extra security you should go for those.

I'll admit it I have tried countess times to get into my brothers thinkpad but that darned finger reader CAN NOT BE FOOLED! lol

 

You need data encryption; finger prints are just a more convenient/secured alternative to passwords. No matter what kind of restrictions you enforce for login in to the system, one can always take out the HDD and access data directly if it is not encrypted.

 

This is one of the original and most widely used encryption methods: PGP. As far as is known, it's unbreakable (at the right settings etc.).

 

Yes, there are hard drives with encryption built in. From what I've read, though, there's a noticeable slowdown in using the computer while data is encrypted/decrypted. Encryption progrags that create virtual drives that are encrypted usually work very well (see this Net Tools Article). There are several programs that can do this (other than those listed in the article). TrueCrypt is very popular. I use AxCrypt, which is open source.

Some things users can do to minimize loss in a stolen laptop:

1. Set a password in the BIOS. User needs a password for anything to even boot up. Fairly easily overcome, though.

2. Strong passwords for user login. 10+ characters: alpha, numeric, and symbols.

3. Use Kensington locks to secure the laptop, even in the office. Laptops are easy to pick up and take and have a decent resale value for theives, even without the data.

4. Do not use the password saving feature in browsers or any other programs - require the user to log in every time.

5. There are other programs that offer the ability to remotely wipe the drive if the notebook is stolen (per This PC World Article*. For the program to work, the stolen notebook (or it's hard drive) needs to access the WWW. Which means, if the stolen laptop/drive is never connected to the web, it won't be wiped.

Any of the software options should be researched carefully. Because they all have strengths and weaknesses (encrypted drive/slowness vs. drive wiping/web access), one option may be better than another.

 

For encryption on the HD, does it require a special HD, or can you use software to implement it on any HD?

It seems like the combination of password and fingerprint reader is best, because then nobody can replicate the password, and nobody can access the HD without the password.

Or could HD encryption alone be enough?

Dell offers HD partitioning when you buy a system. Is it best to get a partition for the OS (which wouldn't be encrypted from Dell), and then use encryption on just the "data drive"? Although I may give up on the Vostro 1400 if the fingerprint reader is key to the security.

 

Thanks sanpabloguy, just so you know I typed up my last post before reading yours.

Guess I need to determine if it's worth the slowness of an ecrypted drive (I think it may be for peace of mind), and I'm still thinking that combo with fingerprint reader would be the best.

If a strong password is sufficient, may still consider it.

One thing that I've never understood is why Windows allows one to "remember the password" as you mentioned. That is so anti-security. And if you're not careful, it's easy to choose "remember password" if not paying attention, especially since others in my family may be using it at times.

Dell should offer fingerprint readers on all their business notebooks.

 

Trend Micro 2008 will have a method called Remote File Lock that will allow you to encrypt and lock files from another computer if yours is ever stolen.

 

bitlocker, drivecrypt, or truecrypt

 

Unfortunately any remote file locking / erasing utility requires a network connection... if your stuff is stolen the last thing a data thief is likely to do is hook it up to the internet (lojack systems being probably the first thing to be careful of).

Your best bet is to setup proper security on your system, password protect your accounts then use a utility to encrypt your sensitive data (like your documents folder).

If someone breaks through all that... they were going to get your info eventually...

Nothing is unbreakable, just a matter of how hard it is to break.

 

How critical is the choice of password do you think? The reason I ask is that if it takes a 10+ digit mixed character password to be secure, the fingerprint reader would sure be a handy little feature to have.

 

Choice of password is very critical.

Hackers have a number of tools to crack passwords. Security Focus has This Article on Password Security.

Microsoft for Small Business has This Article/Tips on security.

It's a matter of getting used to and training your staff to use good logons. After reading the articles above, you/your employees can use any random set of data to create passwords: song lyrics/titles; a sentence that makes sense to them that can be converted; or have them pick three objects that are important to them (maybe type of tree, kind of fruit, breed of dog) and use those three things to create a password.

So, for that example, "pine, banana, poodle" could become

p1N3b@N@N@p00d13

Not the best example (and never use a password posted on the internet), but it gives you an idea.