Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Linux Links | Bling | About BLU |
On Jan 3, 2012, at 9:09 AM, Kyle Leslie wrote: > > One of the huge benefits I think is that the encryption keys/recovery keys > can be stored in AD. So that if you need to unlock or change the drives > around you don't need to have the user store that some place to get > lost/stolen. It stores in AD and can be recovered when we need it. This is, of course, the singular benefit of key escrow. Of course, if your AD is compromised then the attacker has access to *all* of your escrowed keys. --Rich P.
BLU is a member of BostonUserGroups | |
We also thank MIT for the use of their facilities. |