Home > Articles > Home & Office Computing > Microsoft Windows Desktop

  • Print
  • + Share This
From the author of

Planning an EFS Strategy

If you want to implement EFS in your business environment, I suggest you make sure that you have a written policy stating something like this: "We will not implement EFS in our organization until we have a documented method that addresses all the issues associated with EFS." When planning an EFS strategy, you need to make sure that you know all of the following:

  • How EFS will be managed

  • Who will be the DRAs

  • How you'll manage DRA accounts

  • How and where the certificates and private keys will be backed up

  • How you'll deal with forgotten passwords and their impact on lost data

  • How you'll deal with RAS users

  • How EFS will be implemented on mobile computers

  • Whether you'll allow sharing of encrypted files—if so, how

End-user training is an essential part of your overall EFS implementation strategy. If users are not trained properly, your confidential data can be at risk. Users may copy files to non–NTFS partitions, such as floppy disks, CD-ROMs, or USB drives. Finally, when you plan your strategy, don't forget to address whether and how users will be allowed to encrypt your business data when they work from home.

  • + Share This
  • 🔖 Save To Your Account