Data Protection: some suggestions

Recommendations organizations, in which importance is the protection of data available to mobile users (with the possibility of theft or loss of equipment), are as follows:

* Priority should be given to ensure the physical protection of the computer.
* Mobile computer must always be used as part of Windows 2000 domain.
* Keep user private keys separate from the mobile computer and perform their importation, as required.
* For ordinary folders used for storage, such as My Documents ( "My Documents") and temporary folders, folder encryption should perform in such a way that all new and temporary files zashifrovyvalis when they are established.
* If this is a very important information should always be to create new files and folders to copy encrypted in such a folder with the existing files encrypted text. These measures ensure that all of the files will never be stored on a computer in the form of text, unencrypted, and temporary data files will be impossible to restore the attack with the use of sophisticated methods for the analysis of the disk.
* Encrypted folders can be created in a domain using a combination of group policies, login scripts and templates security, enabling configuration is standard folders, such as My Documents ( "My Documents"), in the form of encrypted files.
* Windows XP operating system supports data encryption in the autonomous files. Stand-alone files and folders, which runs a local caching should unencrypted using politician cache on the client side.
* On a mobile computer should be used SYSKEY at 2 or 3 mode, the system load to prevent intruder.