Endpoint Encryption for Files and Folders 4.0 User Guide - McAfee

26.12.2013 Views
Introducing McAfee Endpoint Encryption for Files and Folders McAfee Endpoint Encryption for Files and Folders (EEFF) offers data protection in the form of powerful encryption technology so that only authorized users can access information. Contents Why EEFF? How EEFF 4.0 works EEFF Features System requirements About this guide Why EEFF? EEFF offers enhanced security to protect your data. EEFF depends on Microsoft Windows user accounts and works in real-time to authenticate user to access encryption keys and to retrieve the correct policy in EEFF. A smart card implementation based on Windows logon can be used for enhanced security. Endpoint Encryption for Files and Folders allows you to define and protect information in a way that only certain users can access it. This data is stored, managed, archived, and distributed as any other file is, however, it can be viewed only by those who have been granted access. Endpoint Encryption for Files and Folders is a Persistent Encryption engine: when a file has been encrypted and has been moved or copied to another place, it remains encrypted. If a file is moved out of an encrypted directory, it will also remain encrypted. Likewise, if an encrypted file is moved to a memory stick – the encryption will remain in place. EEFF integrates with McAfee ePolicy Orchestrator (ePO), which provides a single point of control over all the data on the systems. EEFF with ePO supports both user-based and system-based policies. Assigning these policies to users encrypts the data on the client as configured. EEFF depends on Microsoft Windows credentials therefore, both registered domain users and local system users can be assented encryption policies and associated keys. How EEFF 4.0 works EEFF encrypts folders and files according to policies assigned to the user. These policies are enforced by the ePO server. 4 McAfee Endpoint Encryption for Files and Folders software version 4.0.0 User Guide

Introducing McAfee Endpoint Encryption for Files and Folders EEFF Features The client software is installed on the client system. After the installation, the system synchronizes with the ePO server and acquires the user data. EEFF then assigns encryption policies and keys to the user as configured. EEFF client acts like a filter between the application creating or editing the files and the storage media. When a file is saved, EEFF filter executes the assigned encryption policies and encrypts the data, if applicable. If the user manages to kill the main EEFF process on the client system, EEFF encrypts folders and files according to policies assigned to the user. These policies are enforced by the ePO server. The client software is installed on the client system. After the installation, the system synchronizes with the ePO server and acquires the user data. EEFF then assigns encryption policies and keys to the user as configured. The EEFF client acts like a filter between the application creating or editing the files and the storage media. When a file is saved, the EEFF filter executes the assigned encryption policies and encrypts the data, if applicable. If the user manages to kill the main EEFF process (MfeffCore.exe) on the client system, attempting to deviate from the assigned encryption policy, the process will be automatically regenerated. The automatic restart cannot be disabled. When a file that is encrypted with key A is moved to a folder where files are encrypted with key B, the file encrypted with key A will immediately be re-encrypted with key B. This behavior is known as follow-target-encryption and requires that the user or process transferring the file has access to both key A and key B. This operation takes place instantly when the file is placed in the folder encrypted with key B. EEFF Features • Centralized management — Provides support for deploying and managing McAfee Endpoint Encryption for Files and Folders using ePO 4.5 and 4.6. • Windows authentication based policy enforcement — Assigns encryption policies and keys to Windows user accounts. • Integration with the McAfee Tray icon - Consolidates the tray icons to one common McAfee icon. • User Personal Keys - Allow users to have individual keys, generated centrally and possible to assign in policies for encryption. • Protect data on Removable media — Provides support for removable media encryption. • Migration from EEFF v3.x to EEFF v4 - Provides support for migrating keys from EEFF v3.x to EEFF v4 by importing them into ePO. • File Extension exclusion - Excludes the listed file types from encryption. For example, MP3 and WAV files. System requirements System requirements Systems ePO Server Systems Requirements See McAfee ePolicy Orchestrator 4.5 and 4.6 - Installation Guide McAfee Endpoint Encryption for Files and Folders software version 4.0.0 User Guide 5

Page 1 and 2: McAfee Endpoint Encryption for File

Page 3: Contents Introducing McAfee Endpoin

Page 7 and 8: Using the Context menu The options

Page 9 and 10: Using the Context menu Attaching a

Page 11 and 12: Launching McAfee Endpoint Encryptio

Page 13 and 14: Managing User Local keys Deleting a

Page 15 and 16: Managing User Local keys Recovering

Page 17 and 18: Managing Endpoint Encryption for Re

Page 19 and 20: Managing Endpoint Encryption for Re

encryption

endpoint

mcafee

folders

encrypted

removable

software

folder

task

password

kc.mcafee.com

Endpoint Encryption for Files and Folders 4.0 User Guide - McAfee

Endpoint Encryption for Files and Folders 4.0 User Guide - McAfee ... View more Endpoint Encryption for Files and Folders 4.0 User Guide - McAfee

Delete template?

Save as template ?

Endpoint Encryption for Files and Folders 4.0 User Guide - McAfee Endpoint Encryption for Files and Folders 4.0 User Guide - McAfee