heavyhaze Absent Member.
Absent Member.
1409 views

ZCM Encryption Concerns - Potential unauthorized unencyption

We are switching from SafeGuard Easy to ZCM Encryption for our laptops. A few threads here mention that if the clients have the potential to automatically unencrypt themselves without administrator intervention. This would be a resume producing situation in my company during a security audit. I cannot have any risk of a device unencrypting itself because it fails to see or read an encryption policy correctly.

Any thoughts here? I can't be the only one here who can't afford to have this risk.

Heavyhaze
0 Likes
2 Replies
Anonymous_User Absent Member.
Absent Member.

Re: ZCM Encryption Concerns - Potential unauthorized unencyption

I have an ongoing SR on this problem. The fix I have been told is in 11.3
and they are going to make a FTF I would guess at least for 11.2.3a. I
still have not heard back on when the FTF would be available.

At this point we stopped rolling out FDE until the fix comes out and removed
it from the most unstable devices. Besides the fact the drive gets
un-encrypted the whole process can take a good day to run and it is totally
random. I had a few machines that went through the whole unencrypt and then
encrypt process a number of times over a month and then other devices that
never did.

Jim

"heavyhaze" wrote in message
news:heavyhaze.5vdwmo@no-mx.forums.novell.com...


We are switching from SafeGuard Easy to ZCM Encryption for our laptops.
A few threads here mention that if the clients have the potential to
automatically unencrypt themselves without administrator intervention.
This would be a resume producing situation in my company during a
security audit. I cannot have any risk of a device unencrypting itself
because it fails to see or read an encryption policy correctly.

Any thoughts here? I can't be the only one here who can't afford to
have this risk.

Heavyhaze

0 Likes
heavyhaze Absent Member.
Absent Member.

Re: ZCM Encryption Concerns - Potential unauthorized unencyp

Anyone else have any thoughts on this. Just this minute I am working on a test machine that decided to unencrypt itself. This is not good and I can't have this risk. Does anyone know if there is a field test patch yet to lock down encryption? I love automation, but in this case, requiring an manual intervention before unencrypting would be preferred.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.