|
Infineon Security Platform Solution - User Initialization Wizard |
Security Platform Features
With this page you can configure your Security Platform Features, e.g. file and folder encryption.
 |
Availability of page: This page is only available, if
your user policies allow to configure at least one feature. Availability of features: Depends on your user policy settings. |
The following table explains all Security Platform Features.
| Feature | Explanation |
 Secure e-mail |
User-specific e-mail encryption and/or signing to
prevent unauthorized persons from reading or changing your e-mails. Using this
feature guarantees that only the e-mail creator and the specified recipients
will be able to decrypt and read the message or validate the identity of the
sender. If you choose to configure this feature, you can request a certificate for secure e-mail (if a certificate request web address is set in your policy settings). The wizard will provide information how to configure secure e-mail. The configuration of your mail client is not part of this wizard. Thus the status cannot displayed here. |
| File and folder
encryption - Encryption Certificate |
Select this feature, if you want to view or change your
Encryption Certificate.
If you choose to configure this feature, you
can select a certificate. You can also request or create a new certificate.
|
| File and folder
encryption - Encrypting File System (EFS) |
The operating system incorporates the functionality to perform user-specific encryption of the
content of folders and files on the local computer using the Microsoft Encrypting File System
(EFS).
Only the user who created a file in these folders can access the content of this
file. Other users have to be granted access rights to an EFS folder in an explicit
administrative operation to enable them to use files in it.
|
| File and folder
encryption - Personal Secure Drive (PSD) |
Personal Secure Drive features file and folder encryption
similar to EFS. Unlike EFS, PSD is supported in all operating systems supported by Security Platform Solution. A logical drive is provided to permitted users. This drive offers access protection and encryption for all content in it. The encryption is performed automatically. A PSD cannot be accessed via its UNC identifier to get readable data and can be installed only on the local computer. Network access is not possible. If you choose to configure this feature, you can manage your Personal Secure Drives. |
| Enhanced Authentication |
Select this feature, if you want to view or change your
authentication settings. If allowed by your policies, you can select an authentication device or Password Authentication.
|
Feature Reconfiguration: In some special circumstances you need to reconfigure a feature. Examples are:
- When the status of File and folder encryption - Encryption Certificate is Reconfiguration required, you have to first resolve this. If the encryption certificate is not valid or not available any more, you can create a new encryption certificate or restore user credentials. This certificate is then automatically rekeyed for your configured EFS and/or PSD.
- If the encryption certificate is not available and you have no user credentials backup, then you have to create a new encryption certificate. This new certificate is then automatically rekeyed for your configured EFS. But this certificate cannot be automatically rekeyed for your configured PSD, hence you have to delete the old PSD and create a new PSD with this new encryption certificate.
- Your EFS or PSD certificate is not valid or not available any more. This also occurs for File and folder encryption - Encrypting File System (EFS), if you have configured both EFS and PSD, and changed your PSD certificate afterwards.
- A restoration was performed, but your PSD is not accessible any more (e.g. because the PSD image file could not be located).
- You have configured Enhanced Authentication, but your authentication device is not available any more or your authentication device and your Security Platform have different Basic User Passphrases.
©Infineon Technologies AG