Settings

Infineon Security Platform

previous page next page

Infineon Security Platform Solution - Quick Initialization Wizard

Settings

With this page you can configure user-specific Security Platform settings.

Availability of features:

The following table explains Security Platform Features.

Feature Explanation
Hardware-based Encrypting File System (EFS) EFS is part of Microsoft NTFS file system security technology. With EFS you can encrypt your files and folders. The Security Platform Solution extends the security of EFS by protecting the access to EFS encryption keys with the Trusted Platform Module.

If you check this checkbox, Quick Initialization Wizard will enable EFS, create an encrypted folder Documents\Encrypted Data or My Documents\Encrypted Data (depending on your operating system), and create a desktop shortcut to this folder.

Learn more about EFS
Personal Secure Drive (PSD) PSD is an encrypted drive on your computer. It appears like any other hard disk drive. Files and folders on the PSD can be accessed like any other drive. The only difference is that the PSD content is completely encrypted and only accessible after you have explicitly loaded the PSD. Loading of PSD requires your user authentication. PSD data is stored in the PSD image file.

If you check this checkbox, Quick Initialization Wizard will create a PSD and a desktop shortcut to this PSD. The PSD image file will be created in the system partition, in folder Security Platform (unless the location is set via policy File Location for Personal Secure Drive).

Learn more about PSD
Basic User Password Please set the Basic User Password which is required to use Security Platform Features.

When to use EFS or PSD?

The following table compares EFS and PSD. It also provides hints when to use, which of the two features.

Criterion EFS PSD
Encryption Type File and folder based, i.e. discrete files and folders are encrypted. Device based, i.e. all files within the drive are encrypted.
Supported Operating Systems Operating systems supported by Security Platform Solution except Windows Home editions. All operating systems supported by Security Platform Solution.
Data Access and Handling Always visible. Encryption and decryption is possible only after user authentication. Encryption and decryption is blocked after logout from EFS. In addition NTFS file system access rights can be set if you want to share files. Only visible and accessible after having explicitly loaded the drive (requires user authentication). PSD can be explicitly unloaded. In addition NTFS system access rights can be set.
Data Recovery Via EFS Recovery Agents.
  • On operating systems which support EFS: Via EFS Recovery Agents.
  • On operating systems which do not support EFS: Via PSD Recovery Agents.
Data Sharing Can be shared between multiple users by adding the certificate of the other user. No data sharing, single user.
Data Location Local drives or web folders, NTFS file system. Removable media or local hard disk.
Data Backup Via any backup method or software. Via Security Platform Solution Backup.
When to use EFS or PSD If the data to be encrypted is located in special folders (e.g. My Documents or application-specific data folders.
  • If your operating system is a Windows Home edition and therefore does not support EFS.
  • If the data to be encrypted is located on a removable drive which you want to use on several computers.
    In server mode, Personal Secure Drive on removable media can be roamed seamlessly. In stand-alone mode you need to migrate the credentials and settings, or you can restore or add the image file backup.
  • If the data to be encrypted is located on a FAT32 file system.


©Infineon Technologies AG

previous page start next page