Sophos SafeGuard Enterprise Device Encryption - Laptop Encryption Software

SafeGuard Device Encryption is part of Sophos's SafeGuard Enterprise Data Security Suite. It uses 3 layers of protection to prevent unauthorised access to sensitive data on your company laptops and workstations:

Pre-boot authentication – The user is challenged for their password before the machine boots, which makes it impossible to bypass authentication by booting from a floppy drive / CD

Sector Based Encryption - Each sector on the hard drive is encrypted independently. Even if the unauthorised user puts the encrypted disk in a different laptop and uses a brute force attack to try to access information on the hard disk, the amount of time taken to crack the encryption means that the attack would not be successful.

Password Lockout – To prevent password guessing or a dictionary attack, the system can be set to lock out the user after a number of failed password attempts, and also to inject a delay between attempts.

What impact does Hard Disk Encryption have on the user?
In day-to-day use, Sophos hard disk encryption is practically invisible to the user. They can log on using their standard Windows password, and decryption is performed “on the fly” as they access information from the hard drive so there is no noticeable delay.

Who is using Sophos Hard Disk Encryption
Major users of SafeGuard Enterprise include Price Waterhouse Coopers, Google, Microsoft, RSA, The European Commission, and Ford Motor Company.