Secure computer access to fully encrypted disks through hardware-based two factor authentication
(16/05/2008)

Gemalto and McAfee have announced a new integrated solution that enables PC and laptop users secure access to fully encrypted disks through hardware-based two factor authentication.

Both the Gemalto .NET smart card and their Smart Enterprise Guardian (SEG) digital security device have been tested and validated for compatibility with the McAfee® Endpoint Encryption solution and McAfee Total Protection for Data. Now users of these McAfee products can leverage Gemalto smart cards and security tokens to authenticate themselves to their encrypted devices.

“By working with Gemalto, we are able to offer an interoperable security solution that provides peace of mind to organisations,” said Frank Jorissen, vice president international business development with McAfee’s Data Protection Business Unit. “McAfee Endpoint Encryption, with its industry leading encryption, coupled with Gemalto’s .NET devices, guarantees that sensitive data, whether in transition or within the company, is secure. The integrated solution protects organisations from data security access breaches that result in costly disclosure events, lost revenue and damaged brands.”

McAfee Endpoint Encryption (formerly SafeBoot® Device Encryption) includes full disk encryption to ensure security of information stored on desktops, laptops, tablets and other mobile devices. The encryption is transparent to the user and performed “on the fly” so it does not affect user productivity.

Security administrators can set a system to prompt for authentication before it even starts booting to protect against possible attacks on the operating system, or just before it is finished booting. Users must insert their Gemalto digital security device and enter a passphrase or PIN before being authorised to access the system data. This procedure provides the highest levels of security that only two-factor authentication can provide.

In addition, management of McAfee Endpoint Encryption can be centralised, enabling demonstration of compliance with data privacy legislation as well as internal and external security mandates. The integrated solution from Gemalto and McAfee makes it easy to adopt data security measures for organisations and the end user, and reduces the potential risk posed by employees not adhering to data security policies.

“Full disk encryption that requires authentication with an external intelligent device before even loading the operating system is an extremely secure solution,” said Jerome Denis, Identity and Access Management director at Gemalto. “By working with McAfee’s partner program, we make it straightforward for any individual or organisation to implement the highest levels of digital security.”

Since 2006, McAfee Data Protection (formerly SafeBoot) encryption solutions have been compatibility tested with leading smart card and token vendors. The strong authentication capabilities provided by these partners have been a natural complement to the strong encryption and key management solutions provided by McAfee. These Data Protection partners will become part of the McAfee Security Innovation Alliance as McAfee merges its technology partnering programs.

McAfee Data Protection’s enterprise solutions are Common Criteria EAL4 and FIPS 140-1 and 140-2 certified, ensuring that they employ strong encryption and secure key management.