Deployment Guide
Table Of Contents
- Dell Encryption Personal Installation Guide v11.1
- Contents
- Overview
- Requirements
- Download the Software
- Installation
- Advanced Authentication and Encryption Personal Setup Wizards
- Configure Console Settings
- Uninstall the Master Installer
- Uninstall Using the Child Installers
- Data Security Uninstaller
- Policies and Template Descriptions
- Policies
- Template Descriptions
- Aggressive Protection for All Fixed Drives and External Drives
- PCI Regulation Targeted
- Data Breach Regulation Targeted
- HIPAA Regulation Targeted
- Basic Protection for All Fixed Drives and External Drives (Default)
- Basic Protection for All Fixed Drives
- Basic Protection for System Drive Only
- Basic Protection for External Drives
- Encryption Disabled
- Extract Child Installers
- Troubleshooting
- Glossary
Policy Aggre
ssive
Protec
tion
for All
Fixed
Drives
and
Extern
al
Drives
PCI
Regula
tion
Data
Breac
h
Regula
tion
HIPAA
Regula
tion
Basic
Protec
tion
for All
Fixed
Drives
and
Ext
Drives
(Defau
lt)
Basic
Protec
tion
for All
Fixed
Drives
Basic
Protec
tion
for
Syste
m
Drive
Only
Basic
Protec
tion
for
Extern
al
Drives
Encry
ption
Disabl
ed
Description
area icon allowing the user
to turn this feature on or
off.
When False, encryption
processing occurs any
time, even while the user is
working.
Enabling this option
significantly extends the
amount of time it takes
to complete encryption or
decryption.
Template Descriptions
Aggressive Protection for All Fixed Drives and External Drives
This policy template is designed for organizations with a primary goal of enforcing strong security and risk avoidance across the
entire enterprise. It is best used when security is significantly more important than usability and the need for less secure policy
exceptions for specific users, groups or devices is minimal.
This policy template:
● is a highly restricted configuration, providing greater protection.
● provides protection of the System Drive and all Fixed Drives.
● encrypts all data on removable media devices, and prevents the use of non-encrypted removable media devices.
● provides read-only optical drive control.
PCI Regulation Targeted
Payment Card Industry Data Security Standard (PCI DSS) is a multi-faceted security standard that includes requirements for
security management, policies, procedures, network architecture, software design, and other critical protective measures. This
comprehensive standard is intended to set the guidelines for organizations to proactively protect customer account data.
This policy template:
● provides protection of the System Drive and all Fixed Drives.
● prompts users to encrypt removable media devices.
● provides the ability to write only UDF CD/DVDs. Port control configuration allows read access to all optical drives.
Data Breach Regulation Targeted
The Sarbanes-Oxley Act requires adequate controls for financial information. Because much of this information resides in
electronic format, encryption is a key control point when this data is stored or transferred. The Gramm-Leach-Bliley (GLB) Act
(also known as the Financial Services Modernization Act) guidelines do not require encryption. However, the Federal Financial
Institutions Examination Council (FFIEC) recommends that, "Financial institutions should employ encryption to mitigate the risk
of disclosure or alteration of sensitive information in storage and transit." California Senate Bill 1386 (California's Database
62
Policies and Template Descriptions