![symantec encryption desktop pgp token passphrase symantec encryption desktop pgp token passphrase](http://projects.oucs.ox.ac.uk/pgp/documentation/images/pgp-enroll12.png)
ManagementĪs mentioned above, Symantec Endpoint Encryption is designed for centralized management via the Symantec Endpoint Encryption Management Server product. Or the system can be configured to lock out the user and require the user to use either the self-service password recovery feature or the help desk-provided recovery option to regain access to the system. If there are too many failed authentication attempts in a row on a device - with the number determined by the administrator - the system can be configured to automatically add delays between each authentication attempt, thus slowing down an attacker. The help desk-provided option gives these enterprises another way of offering a recovery feature without the risk inherent in self-service.Īnother helpful authentication feature that Symantec Endpoint Encryption offers is mitigation of brute-force authentication attacks, typically involving passwords. Some organizations do not permit self-service because of the relative ease in compromising it through social engineering attacks. Symantec Endpoint Encryption offers self-service password recovery for users, as well as help desk-provided password recovery. The FDE product can use cryptographic tokens and smart cards as forms of authentication in addition to passwords. Multifactor authentication is supported by Symantec Endpoint Encryption, along with integration with Active Directory services. Certification does not indicate that a product is foolproof, but rather that known weaknesses in its cryptography do not exist. FIPS 140-2 certification indicates that a product has been independently tested to determine if it has any significant known problems in its cryptographic implementation. AES is a robust algorithm and, when used with the 256-bit key option, provides strong protection against current and emerging threats.īeing a brand new product, Symantec Endpoint Encryption has not yet been Federal Information Processing Standard (FIPS) 140-2-certified, but the validation process is in progress. Symantec Endpoint Encryption supports the use of the Advanced Encryption Standard (AES) encryption algorithm with either 128-bit keys or 256-bit keys. Since Symantec Endpoint Encryption is a new product, it is only supported on relatively new Windows operating system (OS) versions, as follows: Microsoft Windows 8.1 Enterprise and Professional, Microsoft Windows 8 Enterprise and Professional, Microsoft Windows 7 Ultimate, Enterprise and Professional, Microsoft Windows Server 2012 Datacenter and Standard, and Microsoft Windows Server 2008 Enterprise and Standard. It is intended to be centrally managed via the Symantec Endpoint Encryption Management Server product, which must be hosted in an Active Directory domain.
![symantec encryption desktop pgp token passphrase symantec encryption desktop pgp token passphrase](https://s3.studylib.net/store/data/008418541_1-f5eede6cbaff4ef24e7b1e853b2120bd.png)
Unlike some other vendors, Symantec makes a single version of its Endpoint Encryption software. The Symantec Endpoint Encryption product was first released in October 2014, replacing the Symantec Drive Encryption product.