Re: system monitoring

Yes.

If this is highly classfied information, someone could do that. This is why
cameras are not allowed in such areas. And someone could just memorise it,
after all. In the end, it's a matter of trust and security clearance. If the
information cannot be transferred that easily because of high volume
(suppose it's a new chip's RTL), then isolated environment works.

"m" <m@xxx> wrote in message news:%23O2hqcb1JHA.4116@xxxxxxxxxxxxxxxxxxxxxxx
One can alwaysl take a picture of the monitor with a camera and access the
information that way!

"Alexander Grigoriev" <alegr@xxxxxxxxxxxxx> wrote in message
news:OQuEjWW1JHA.3476@xxxxxxxxxxxxxxxxxxxxxxx
Your chew is not palatable for me...

As long as you allow to transfer data between applications, the problem
cannot be solved.

If you want to restrict information flow, you need to restrict the
environment. Ideally, every application should run as a RDP session from
a remote server. Clipboard should not be shared with the local host. The
local machine should be also controlled environment, and be guaranteed
untampered with (by virtues of TPM). PrintScreen from RDP window should
be disabled, perhaps by means of not allowing it to run non-fullscreen.

"boris" <noone@xxxxxxxxxxx> wrote in message
news:4a0d186e$0$1596$742ec2ed@xxxxxxxxxxxxxxxxx
"David Craig" <drivers@xxxxxxxxxxxxx> wrote in message
news:%23glclNR1JHA.3476@xxxxxxxxxxxxxxxxxxxxxxx
For Don's answer that will not work. If you convert a text file to a
PDF, it will not hash out and even using a plaintext input to Microsoft
Word with all its formatting to the .doc or .docx will not work.

The correct answer is to not give anyone you don't trust sensitive
information.
It seems in order for you to understand something it has to be chewed
and put into your mouth.
The solution would be to have a database of hashes of files of interest.
Then a filesystem filter driver would calculate hashes as files are
being written and flag an alert is there was a match to some hash in
database.

Boris






.

Relevant Pages

  • Re: system monitoring
    ... Clipboard should not be shared with the local host. ... it will not hash out and even using a plaintext input to Microsoft ... The solution would be to have a database of hashes of files of interest. ...
    (microsoft.public.win32.programmer.kernel)
  • Re: No LM Hash - no really
    ... One way to also test your environment is to create password that is longer ... stored as LM "Hash" due to LM design. ... >> How do you REALLY disable the generation of Lan Manager password hashes. ... >> Then i go to a workstation and reset the password of my domain account. ...
    (microsoft.public.win2000.security)
  • Re: system monitoring
    ... it will not hash out and even using a plaintext input to Microsoft Word with all its formatting to the .doc or .docx will not work. ... Then a filesystem filter driver would calculate hashes as files are being written and flag an alert is there was a match to some hash in database. ...
    (microsoft.public.win32.programmer.kernel)
  • Re: system monitoring
    ... it will not hash out and even using a plaintext input to Microsoft ... Word with all its formatting to the .doc or .docx will not work. ... The solution would be to have a database of hashes of files of interest. ...
    (microsoft.public.win32.programmer.kernel)
  • Re: system monitoring
    ... If you want to restrict information flow, ... it will not hash out and even using a plaintext input to Microsoft ... The solution would be to have a database of hashes of files of interest. ...
    (microsoft.public.win32.programmer.kernel)
Loading