Efs Encryption In Windows Xp And Windows 2000 Professional
EFS gives us a secure encryption of information. The encryption is so secure, that if you lose the key to decrypt the data, the information. will be irretrievably lost. Windows XP has no "back door" if the key is lost.
Innocently we lose the key for several reasons:
* For example, manipulating the Certificate dialog box or console of Certificates (certmgr.msc) can inadvertently delete the encryption certificate.
* We have, for example, data stored in encrypted folders on a second volume (drive D:, for example). And imagine that we decided to reinstall Windows problems. Format C: \ and install. Unfortunately, in every Windows installation, although the user name and passwords are the same, Windows creates a new security identifier (SID) for each user.Therefore, encryption keys and the security certificate, will be different to be new the user's SID. In this case, or have copies of old certificates, or we will inevitably also lost information. encrypted on our second drive (D:).
To read the tutorial on how to encrypt files in windows 7
With a little care, these scenarios can be prevented so dramatic. To do this, follow these steps (first time):
1) Create an empty folder, and places the encrypted attributes.
2) create or save any text file in that folder. This will encrypt a file for the first time.
3) If your machine is not part of a domain, create a recovery agent. A second user account can be used with this agent to decrypt the files. We will see later how to create the recovery agent.
4) Save the recovery agent certificate. and personal encryption certificate (on a floppy disk, except such as third parties). This last certificate will not be created until we have completed the first encryption, so it is what we have done, for the first and only time, steps 1) and 2).
5) Now we can start to encrypt sensitive data.