Dell Data Protection | Encryption Instalační manuál stáhnout pdf (Strana 94)

94 Installation Guide

PCI Regulation Targeted

Payment Card Industry Data Security Standard (PCI DSS) is a multi-faceted security standard that includes requirements

for security management, policies, procedures, network architecture, software design, and other critical protective

measures. This comprehensive standard is intended to set the guidelines for organizations to proactively protect customer

account data.

This policy template:

• provides protection of the System Drive and all Fixed Drives.

• provides Hardware Crypto Accelerator encryption (when a compatible Hardware Crypto Accelerator is detected on the

client computer).

• prompts users to encrypt Removable Storage devices.

• provides the ability to write only UDF CD/DVDs. Port control configuration allows read access to all optical drives.

Data Breach Regulation Targeted

The Sarbanes-Oxley Act requires adequate controls for financial information. Because much of this information resides in

electronic format, encryption is a key control point when this data is stored or transferred. The Gramm-Leach-Bliley

(GLB) Act (also known as the Financial Services Modernization Act) guidelines do not require encryption. However, the

Federal Financial Institutions Examination Council (FFIEC) recommends that, “Financial institutions should employ

encryption to mitigate the risk of disclosure or alteration of sensitive information in storage and transit.” California Senate

Bill 1386 (California's Database Security Breach Notification Act) aims to protect California residents from identity theft

by requiring organizations that have had computer security breaches to notify all affected individuals. The only way an

organization can avoid notifying customers is to be able to prove all personal information was encrypted prior to a security

breach.

This policy template:

• provides protection of the System Drive and all Fixed Drives.

• provides Hardware Crypto Accelerator encryption (when a compatible Hardware Crypto Accelerator is detected on the

client computer).

• prompts users to encrypt Removable Storage devices.

• provides the ability to write only UDF CD/DVDs. Port control configuration allows read access to all optical drives.

HIPAA Regulation Targeted

The Health Insurance Portability and Accountability Act (HIPAA) mandates that healthcare organizations implement a

number of technical safeguards to protect the confidentiality and integrity of all individually identifiable health

information.

This policy template:

• provides protection of the System Drive and all Fixed Drives.

• provides Hardware Crypto Accelerator encryption (when a compatible Hardware Crypto Accelerator is detected on the

client computer).

• prompts users to encrypt Removable Storage devices.

• provides the ability to write only UDF CD/DVDs. Port control configuration allows read access to all optical drives.

Basic Protection for All Fixed Drives and External Drives (Default)

This policy template provides the recommended configuration, which provides a high level of protection without

significantly impacting system usability.

1 2 ... 89 90 91 92 93 94 95 96 97 98 99 100 101 102

Žádné komentáře

Dell Data Protection | Encryption Instalační manuál Strana 94