FDE an inability for Advanced Malware Detection

For users or potential users.
Post Reply
User avatar
packets
Posts: 47
Joined: Sat Jun 18, 2011 12:27 am
Location: Holly Springs, NC
Contact:

FDE an inability for Advanced Malware Detection

Post by packets » Tue Apr 01, 2014 5:29 am

I have several dental clients who have portable devices (i.e., laptops) in which I use Truecrypt for full disk encryption (FDE) (for HIPAA compliance). In the past (prior too FDE), I'd scan their drive(s) with a LiveCD (e.g., Kaspersky's Rescue Disk) to check for malware, but obviously, this option no longer exists...and Microsoft's Bitlocker will have the same issue(s). I guess these machines should have a regular nuke-pave. My concern now is these machines are regularly reconnected to their protected LAN containing PHI. With FDE I no longer have the option for advanced malware detection (i.e., rootkits, etc.) and therefor these machines, being promiscuous, are now a greater security risk to the protected LAN and I've no way to effectively scan them other than decrypt-clean/scan-encrypt. I really don't believe the health industry thought this through...Hmm...there could be a thief, camouflaged, hidden in plan sight.
Untangle....Because nothing is worse than doing nothing!
http://www.untangle.com/

User avatar
Hersheydmd
Posts: 700
Joined: Sun May 03, 2009 9:12 pm

Re: FDE an inability for Advanced Malware Detection

Post by Hersheydmd » Tue Apr 01, 2014 5:51 am

Why am I not surprised.
Robert M Hersh DMD, FAGD
Univ. of Penn 1982
Brooklyn, NY 11234
https://www.facebook.com/pages/Robert-M ... 1471599429

satishp
Posts: 13
Joined: Thu Nov 10, 2011 10:48 am

Re: FDE an inability for Advanced Malware Detection

Post by satishp » Sat Oct 17, 2015 7:44 pm

Why don't you freeze the system using RollbackRx or use Steady State or comodo time machine kind of products.

so the data will be the only one that will be changing. Application parts will be the same.

True Crypt has been discontinued and they are recommending to use bitlocker since there are some known bugs in truecrypt and it has discontinued developments.

Post Reply