SECUDE secure notebook with additional functionality

By | August 7, 2006

SECUDE has launched SECUDE secure notebook 7.2 – the latest version of its popular security solution, with an extended range of features for greater all round security. SECUDE secure notebook reliably protects notebooks, desktops and external mass storage devices from unauthorised access.

Unlike other solutions it encrypts the entire hard disk rather than just individual files or folders, which means it protects temporary files, swap files and even the operating system itself.

A new feature with version 7.2 is the encryption of hibernation files (the files that a notebook creates just before entering hibernation mode); eliminating the possibility of attack by this route and guaranteeing full protection in all circumstances.

An integrated boot manager enables the configuration of separate windows partitions for using different versions of Windows the same hard drive. This gives users a separate area of the drive that can be used for private, non-business use without compromising official security policies.

Background hard disk encryption

Encrypting the entire hard disk has numerous advantages. Temporary files, for example, are automatically encrypted rather than being left vulnerable to unauthorised recovery. The same applies to information that is copied to the swap file during processing; data that would otherwise have to be manually erased by the user before shutting down.

By encrypting the complete hard disk, SECUDE secure notebook offers a higher level of security combined with ease of use. The encryption process takes place in the background and protects all files, folders, data and the OS without any user interaction.

SECUDE secure notebook supports various recognised encryption algorithms, such as AES, for maximum security with no noticeable deterioration of performance.

Background Pre-Boot-Authentication

Two-Factor-Authentication (e.g. smart card plus PIN) prior to booting the operating system prevents the circumvention of Windows passwords even if the hard disk is installed in another computer.

An additional module – SECUDE secure bootsystem (SBS) – applies a separate, hardened, Linux-based Pre-Boot System, to handle user authentication. Only if the user authenticates successfully with a smart card to the notebook, will the boot process be initiated and access to the (encrypted) hard disk granted.

Companies can choose any of more than twenty different security devices, including smart cards, smart card terminals and tokens, from various providers, for secure Two-Factor-Authentication without being tied to a particular vendor.

Leave a Reply