koby said:
Since I backed up my entire harddisk I presume that also the personal
encryption certificate (with its associated private key) and the recovery
agent certificate were backed up.
No, not really. These "backups" are made via a separate operation that
you must perform manually. [While it's true that some of the info is
buried in the reg, and you did back that up, it is of no real use to you -
if it could be of use to you, or anyone else, then the encrypting file
system wouldn't be very secure, would it?]
You need to read the help files on File Encryption and find out what these
things are and how to perform these operations. Read and understand
everything in there before beginning to use encryption, or you will end up
being sorry some day.
Go into Help and Support and enter "storing data more securely" into the
search field; hit enter. Read this topic and ALL the linked topics (and
their linked topics, etc).
Unfortuantely, Help and Support does not really provide a very complete
overview of the whole issue - it can be complicated, and H&S's method of
using links-to-this and links-to-that make it very easy to miss something
that is important. You should read a full and complete tutorial on the
issue if you can; try googling around for somehthing comprehensive; start
w/ The Elder Geek, I'll bet he's got something pretty good (tho I haven't
checked).
I would HIGHLY recommend reading the chapter on file encryption in Ed
Bott's "Windows XP: Inside Out" book; it clearly explains the pitfalls of
using file encryption and all the precautions you need to take up-front in
order to deal with unforseen problems down the road.
[MS left FE out of XP Home for a good reason - it's not a simple topic,
and can cause major headaches for casual users that don't have experience
with "windows administrative/security" type issues, which are always
pretty tricky. Encryption Key management is one of those tricky issues.]
Good Luck.