Ngokwe-Deb Shinder ngemvume evela kuWowowSecurity.com
Ikhono lokubethela idatha - kokubili idatha ekudluliseleni (isebenzise i- IPSec ) nedatha egcinwe kwi disk (isebenzisa ukubethela uhlelo lwefayela ) ngaphandle kwesidingo sesofthiwe yesithathu kungenye yezinzuzo ezinkulu kakhulu ze-Windows 2000 no- XP / 2003 ngaphezu kwe-Microsoft yangaphambili izinhlelo zokusebenza. Ngeshwa, abasebenzisi abaningi be-Windows abazisebenzisi lezi zici zokuphepha ezintsha, noma uma bezisebenzisa, abaziqondi ngokugcwele lokho abakwenzayo, ukuthi basebenza kanjani, nokuthi yiziphi izindlela ezinhle kakhulu zokwenza okuningi. Kulesi sihloko, ngizoxoxa nge-EFS: ukusetshenziswa kwayo, ukukhubazeka kwayo, nokuthi kungangena kanjani ohlelweni lwakho lokuphepha kwenethiwekhi.
Ikhono lokubethela idatha - kokubili idatha ekudluliseleni (isebenzise i-IPSec) nedatha egcinwe kwi disk (isebenzisa ukubethela uhlelo lwefayela) ngaphandle kwesidingo sesofthiwe yesithathu kungenye yezinzuzo ezinkulu kakhulu ze-Windows 2000 no-XP / 2003 ngaphezu kwe-Microsoft yangaphambili izinhlelo zokusebenza. Ngeshwa, abasebenzisi abaningi be-Windows abazisebenzisi lezi zici zokuphepha ezintsha, noma uma bezisebenzisa, abaziqondi ngokugcwele lokho abakwenzayo, ukuthi basebenza kanjani, nokuthi yiziphi izindlela ezinhle kakhulu zokwenza okuningi.
Ngikhuluma ngokusetshenziswa kwe-IPSec kusihloko esandulele; kulesi sihloko, ngifuna ukukhuluma nge-EFS: ukusetshenziswa kwayo, ukukhubazeka kwayo, nokuthi kungangena kanjani ohlelweni lwakho lokuphepha kwenethiwekhi.
Inhloso ye-EFS
I-Microsoft iklanyelwe i-EFS ukuhlinzeka ngobuchwepheshe obususelwe kusihluthulelo somphakathi ozosebenza njengohlobo "lokugcina lokuzivikela" ukuvikela idatha yakho egcinwe kubangaphakathi. Uma i-hacker ehlakaniphile idlula ezinye izinyathelo zokuphepha - iyenze ngokusebenzisa i- firewall yakho (noma ifinyelela ukufinyelela kwikhompyutha), inqoba izimvume zokufinyelela ukuthola amalungelo okuphatha - i-EFS ingamvimba ukuthi angakwazi ukufunda idatha umbhalo obhaliwe. Lokhu kuyiqiniso ngaphandle kokuthi umgibeli ekwazi ukungena ngemvume njengoba umsebenzisi obhala phansi idokhumenti (noma, ku-Windows XP / 2000, omunye umsebenzisi umsebenzisi owabelane naye ukufinyelela).
Kunezinye izindlela zokubetha idatha kudiski. Abathengisi abaningi be-software benza imikhiqizo yokubethela idatha engasetshenziswa ngezihumusho ezihlukahlukene ze-Windows. Lokhu kufaka phakathi i-ScramDisk, i-SafeDisk ne-PGPDisk. Amanye alawa asebenzisa ukubethelwa kwezinga lokuhlukanisa noma ukudala idrayivu encrypted, lapho yonke idatha egcinwe kuleso hlulelo noma kuleyo drive virtual izobhalwa. Abanye basebenzise ukubethela kwezinga lefayela, okukuvumela ukuba ubhale idatha yakho ngesisekelo sefayela nefayela kungakhathaliseki ukuthi bahlala kuphi. Ezinye zalezi zindlela zisebenzisa iphasiwedi ukuvikela idatha; lelophasiwedi lingene uma ubhala phansi ifayela futhi kufanele lifakwe futhi ukuze ulifake. I-EFS isebenzisa izitifiketi zedijithali ezibophezele ku-akhawunti ethile yomsebenzisi ukucacisa uma ifayela lingakwazi ukuchithwa.
I-Microsoft iklanyelwe i-EFS ukuba isebenzise umsebenzisi, futhi impela iyasebenza ngokucacile kumsebenzisi. Ukubethela ifayela - noma ifolda yonke - kulula njengokuhlola ibhokisi lokuhlola ezilungiselelweni eziphambili ze-Properties yefayela noma ifolda.
Qaphela ukuthi ukubethela kwe-EFS kutholakala kuphela kumafayili namafolda asesitokisini esenziwe nge- NTFS . Uma ngabe i-drive ishicilelwe ku-FAT noma i-FAT32, ngeke kube khona inkinobho Ethuthukile kwiphepha leZakhiwo. Futhi phawula ukuthi noma ngabe izinketho zokucindezela noma ukubetha ifayela / ifolda zinikezwa ku-interface njengama-checkbox, empeleni zisebenza njengezinkinobho zokukhetha esikhundleni; okungukuthi, uma uhlola eyodwa, enye ihloliwe ngokuzenzekelayo. Ifayela noma ifolda ayikwazi ukubethelwa futhi icindezelwe ngesikhathi esifanayo.
Uma ifayela noma ifolda ifakiwe, ukuhluka okubonakalayo kuphela ukuthi amafayili / amafolda okubethelwa azoboniswa ku-Explorer ngombala ohlukile, uma ibhokisi lokuhlola eliboniswayo liboniswe noma licindezelwe amafayela we-NTFS ngombala kukhethwe ku-Izinketho zeFolda (okulungiselelwe ngamathuluzi Izinketho zefolda | Buka ithebhu ku-Windows Explorer).
Umsebenzisi owabethela idokhumenti akudingeki akhathazeke ngokumisa okwesikhashana ukuze awufinyelele. Uma evula, i-othomathikhi futhi ichithwe ngokucacile - uma nje umsebenzisi engena ngemvume nge-akhawunti yomsebenzisi njengalapho ibhalwe ngekhodi. Uma omunye ezama ukuwufinyelela, noma kunjalo, idokhumenti ngeke ivule futhi umlayezo uzokwazisa umsebenzisi ukuthi ukufinyelela kunqatshelwe.
Yini eqhubekayo ngaphansi kweHood?
Nakuba i-EFS ibonakala ilula kakhulu kumsebenzisi, kuningi okuqhubekayo ngaphansi kwehood ukuze kwenze konke lokhu kwenzeke. Kokubili ukulinganisa (ukhiye oyimfihlo) nokubethelwa kwe-asymmetric (ukhiye womphakathi) kusetshenziselwa inhlanganisela ukuzisebenzisa ngokunenzuzo izinzuzo kanye nokulimala kwalowo nalowo.
Uma umsebenzisi esebenzisa i-EFS ekuqaleni ukubethela ifayela, i-akhawunti yomsebenzisi inikezwe i-pair ebalulekile (ukhiye womphakathi kanye nesikhiye sangasese esihambelanayo), okukhiqizwa yizinsizakalo zesitifiketi - uma kukhona i-CA efakwe kwinethiwekhi - noma isayinwe ngu-EFS. Isihluthulelo somphakathi sisetshenziselwa ukubethela futhi ukhiye wangasese usetshenziselwa ukubhala kabusha ...
Ukufunda i-athikili ephelele bese ubona izithombe ezisezingeni eligcwele lezi Zingqikithi zichofoze lapha: Uphi i-EFS Engena Kuhlelo Lokuvikela?