J
John D
I have a home computer running XP Pro networked to a few other in-home
computers via a wired router. The router is connected to a cable
modem. I keep my sensitive files on an encrypted virtual drive
(Securstar Drivecrypt) that I mount via a cryptographically strong
pass phrase, typically shortly after boot-up. This keeps the
information in the Drivecrypt files secure if my computer is stolen
from my house. Once mounted, however, the files on the Drivecrypt
drive are just as accessible as the files on any other drive, which
means they are fully exposed to any snooping viruses that may find
their way into my system.
My question is, would using EFS on the sensitive folders on my virtual
drive add any protection regarding possible virus access to those
folders and files? My cursory reading on the subject seems to
indicate not. Apparently, once a user is logged in at boot-up, the
user has transparent access to EFS encrypted files. This suggests
that any well-written virus running on the computer would also have
transparent access to the EFS encrypted files. After all, if Notepad
has transparent access to an EFS encrypted text file then certainly a
virus could have the same transparent access. Yes?
I do run Zone Alarm so that any programs trying to access the internet
must first have my explicit permission.
Thanks in advance for any insight.
John D.
computers via a wired router. The router is connected to a cable
modem. I keep my sensitive files on an encrypted virtual drive
(Securstar Drivecrypt) that I mount via a cryptographically strong
pass phrase, typically shortly after boot-up. This keeps the
information in the Drivecrypt files secure if my computer is stolen
from my house. Once mounted, however, the files on the Drivecrypt
drive are just as accessible as the files on any other drive, which
means they are fully exposed to any snooping viruses that may find
their way into my system.
My question is, would using EFS on the sensitive folders on my virtual
drive add any protection regarding possible virus access to those
folders and files? My cursory reading on the subject seems to
indicate not. Apparently, once a user is logged in at boot-up, the
user has transparent access to EFS encrypted files. This suggests
that any well-written virus running on the computer would also have
transparent access to the EFS encrypted files. After all, if Notepad
has transparent access to an EFS encrypted text file then certainly a
virus could have the same transparent access. Yes?
I do run Zone Alarm so that any programs trying to access the internet
must first have my explicit permission.
Thanks in advance for any insight.
John D.