Re: opening an encrypted files

On Mon, 13 Jun 2005 21:20:40 -0400, Barry Watzman
<WatzmanNOSPAM@xxxxxxxxxx> wrote:

>
>Ok, I'm not the person who posted the non-question, but I have a
>question/problem on the same topic.
>
>I have a USB external drive that I plug into my desktop computer. On
>that drive I create encrypted files (using XP Pro's built-in EFS). I
>have no problem accessing those files on that drive on that computer.
>
>However, I want to be able to access those files when I plug that USB
>drive into another computer (my laptop), and I have not been able to
>figure out how to do it. I have tried exporting the keys (the .pfx
>file) from the desktop system and importing them into my laptop, that
>does not work. I have tried "taking ownership", that doesn't work.
>
>Please note, this is a "workgroup" situation, there is no domain or
>domain controller, there is no "recovery agent" or "recovery policy".
>
>I need step-by-step instructions for reading the EFS encrypted files on
>the portable usb hard drive when that drive is plugged into a computer
>other than the one on which the files were originally encrypted. Of
>course, I have full access to both machines and to any relevant passwords.

Now you see the problems with using EFS. The problem has to do with
non-matching SIDs between the two systems. I've never used EFS, so I
can't talk about how to import the certificates, but I know it can be
done. Somebody esle will have to talk you through that.

I just recommend NOT using EFS. It's a recipe for disaster. It is
high-level government grade encryption, but it's tied to the weakest
link in the world - a solid password that hardly any home user bothers
to use, or even create. If I can log on onto your account, then I can
read your securely encrypted files.

Further, what state-level high-security secrets of our nation are you
trying to protect on your home system? There are so many easier ways
to hide a porno collection!

.

Relevant Pages

  • Re: Encrypting File System - EFS in Win XP
    ... > does support file sharing between multiple users on a single file. ... > This diverse from Windows XP because EFS states that the users who will be ... You do not have EFS encrpytion on a folder. ... >> Authorizing Multi-User Access to Encrypted Files ...
    (microsoft.public.windowsxp.security_admin)
  • Re: EFS Certificate Needed
    ... a backup and restore of an EFS ... not load some of them because the encrypted files were still present. ... Foe sure I will follow "Windows Recommendations". ... that recovery agent will only have ...
    (microsoft.public.security)
  • News reader software failure. The EFS question in a nutshell.
    ... The EFS question: In numerous places, readers are told that they can recover ... What then is the minimum required to recover encrypted files? ... EFS keeps your private key in cache until you log off. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: EFS + unbootable HDD help ...
    ... EFS would not be secure. ... You will still need access to the ORIGINAL keys. ... I did make weekly backups and thus have the encrypted files ... Using Stellar's recovery tool I was able to recover ...
    (microsoft.public.windowsxp.help_and_support)
  • Re: Need advice: Storing EFS, S/MIME, VPN certs on USB token
    ... your encrypted files on the same device as the encrypted files. ... but if my laptop is stolen, ... I have to trust that the encryption protecting the cert store can't be ... So I turn to USB devices. ...
    (microsoft.public.windowsxp.security_admin)