Windows 2000/XP EFS
|
|
Cryptainer
|
 Copying encrypted files to any other file system type (FAT, FAT32, earlier versions of NTFS) will save the file in decrypted form.
|
|
Encrypted data stays encrypted irrespective of the file systems
|
Only works on Windows 2000/XP with NTFS.
|
|
Cryptainer works with most 32 bit versions of Windows.
|
Opening encrypted files over the network, decrypts the file on the remote side and sends decrypted data over the network.
|
|
Cryptainer encrypted data stays encrypted on the network or for that matter any place else.
|
Most data backup programs are not yet aware of EFS encrypted files. Hence all backups are unencrypted. Currently only Microsoft's BACKUP utility included with Windows 2000 is able to back up EFS encrypted files without decrypting them in the process.
|
|
Any data backup program can be used with the Cryptainer volume file. All back up data will always remain encrypted.
|
Folder encryption does not prevent the listing of files contained within.
|
|
All folders stored within a Cryptainer volume are totally inaccessible to anyone. No listing is possible.
|
Due to the way NTFS performs compression, compression and encryption are mutually exclusive for the same file.
|
|
Cryptainer allows for compressed files to be stored within the volume.
|
With physical access to a system, a user can boot the system from floppy disks or use other programs to access encrypted files.
|
|
There is nothing an adversary can do to access the data within a Cryptainer volume file even with physical access to the machine. Encrypted data even if obtained, cannot be read by any one.
|
EFS encryption and decryption does not require a separate password from the user's normal logon under the assumption that only the user can log on as himself and use his certificate to encrypt/decrypt their data.
|
|
Cryptainer uses passwords that are independent of the user's login password.
|
|
|
|
