Settings > SharedDrive

Setting-page for the abylon SHAREDDRIVE, the module for a automatic encrypting of files on a local computer or Server.

  According to program version individual properties can be missing or varying!

Einstellungsseiten

Activate / Deactivate Shareddrive This option activate a new virtual encrypted drive for pure storage in the file explorer. In contrast to the container based encrypted drive, this plugin support a multi-user usage for network. The file can be opened using the file explorer. Changes (for example) are automatically written back in the background when saving. 
Add new Here you can directly create a new virtual encrypted drive. You will find a complete management interface under Managment.
Management Here you get into the advanced settings. This include a complete management interface for creating, eding, deleting and changing password. In the case of using a X.509 certificate-based encryption you can administrate the authorization here.
Subpages

Management

1. Activate / Deactivate SHAREDDRIVE Activates or deactivates the abylon SHAREDDRIVE, in order to show or hide it in the File Explorer as drive.
2. Add new Click this button, to create a new SHAREDDRIVE.
3. Import Click this button, to import an existing SHAREDDRIVE. Therefore must be select a directory with an existing SHAREDDRIVE on hard disk or on server.

  The selected directory must be empty. To protect the files they need only moved into SHAREDDRIVE by using the File Explorer 
4. Remove Click this button, to remove just the entry in the list (button Links) or delete the complete SHAREDDRIVE with all files (button All).
5. Edit Click this button, to change parameters of the selected SHAREDDRIVE.
6. Change Password / Change Default Encryption ALG Change the Secret of the selected SHAREDDRIVE
Password, chip card, USB-Stick or certificates can be used as a secret (Keymanagement). The new Keymanagement are defined in the settings before!

Possible Changes:

  • Possible Changes: Defining new password or chip card.
  • SYMM >> HYBRID: Change from the password based to the certificate based Keymanagement.
  • HYBRID >> SYMM: Change from the the certificate based to password based Keymanagement.

Overview settings:

Default Encryption ALG / Keymanagement New Secret (Keymanagement)
SYMM-System / Password based SYMM-System / Chip card- or USB memory medium based HYBRID-System
Previous Secret (Keymanagement) SYMM-System / Password based Change Password Change Password SYMM >> HYBRID
SYMM-System / Chip card- or USB memory medium based Change Password Change Password SYMM >> HYBRID
HYBRID-System HYBRID >> SYMM HYBRID >> SYMM Changes in the CERTMANAGER possible

See also: Procedure to change the Secret (Keymanagement).
7. Reset For all file operations in SHAREDDRIVE the current directory will be disabled (grayed out!) for any further access. For example after a crash, with this button can be reset this lock manually.
8.   Restor With this button all encrypted files in SHAREDDRIVE are decrypt in one operation.
9. Current connection profiles List of connections to all SHAREDDRIVE (local or network) on the computer.
10. Authorize certificates This list view show all authorize certificates (PKCS#7 or PKCS12) for the selected virtual drive.

With the button Remove the selected certificate will be deleted from the authorize list. The own certificate can not be removed. With the button Add button, the access permission is supplemented by a new certificate. To selection the certificate the abylon CERTMANAGER open. The button Info display the certificate information.

The certificates are need and display only for HYBRID-System SHAREDDRIVEs!

 Settings

1. Default Encryption ALG In case of each file operation the current list is blocked for further operations in the abylon SHAREDDRIVE:
  • SYMM-AES: Password based symmetrical encryption with the AES-algorithm (256 bit key length)
  • SYMM-Blowfish: Password based symmetrical encryption with the Blowfish-algorithm (448 bit key length)
  • HYBRID-AES: Certificate based asymmetrical key administration according to the PKCS-procedure of RSA and internal data encryption with the AES-algorithm (256 bit key length)
  • HYBRID-Blowfish: Certificate based asymmetrical key administration according to the PKCS-procedure of RSA and internal data encryption with the Blowfish-algorithm(448 bit key length)
  • SYMM-AES: Password based symmetrical encryption with the AES-algorithm (256 bit key length)
  • SYMM-AES 4Eye-System: Password based symmetrical encryption with the AES-algorithm (256 bit key length). At 4Eye-system must 2 passwords entered.
  • SYMM-Blowfish: Password based symmetrical encryption with the Blowfish-algorithm (448 bit key length)
  • SYMM-Blowfish 4Eye-System: Password based symmetrical encryption with the Blowfish-algorithm (448 bit key length). At 4Eye-system must 2 passwords entered.
  • SYMM-AES & Blowfish: Password based symmetrical encryption with the AES-algorithm (256 bit key length) and then with the Blowfish-Algorithmus (448 bit key length).
  • SYMM-AES & Blowfish 4Eye-System: Password based symmetrical encryption with the AES-algorithm (256 bit key length) and then with the Blowfish-Algorithmus (448 bit key length). At 4Eye-system must 2 passwords entered.
  • HYBRID-AES: Certificate based asymmetrical key administration according to the PKCS-procedure of RSA and internal data encryption with the AES-algorithm (256 bit key length)
  • HYBRID-Blowfish: Certificate based asymmetrical key administration according to the PKCS-procedure of RSA and internal data encryption with the Blowfish-algorithm(448 bit key length)
  • HYBRID-AES & Blowfish: Certificate based asymmetrical key administration according to the PKCS-procedure of RSA and internal data encryption with the AES-algorithm (256 bit key length) and then with the Blowfish-Algorithmus (448 bit key length).

  In the Keymanagement you can define the using of passwords, bank- or health insurance in case of the SYMM-System
2. Close automatically Time in minutes, after which the SHAREDDRIVE is closed automatically.
3. Wipe-level The wipe-level can be defined with the slide control:
  • Level 0
    Remove the links (correspond to the normal deletion in the File Explorer)
  • Level 1
    Overwrite the data 1 times  (binary zeros)
  • Level 2
    Overwrite the data 3 times (DOD - Standard = 1. Random Numbers + 2. Binary F + 3. Binary Zeros)
  • Level 3
    Overwrite the data 7 times (DOD II - Standard = 3x Binary Zeros +  3x Binary F + 1x Random Numbers)
  • Level 4 
    Overwrite the data 13 times (3x Random Numbers + DOD - II + 2x Random Numbers + 1x Binary Zeros)
  • Level 5
    Overwrite the data 35 times (Peter Gutman Method - Description see document)

  A higher wipe-level is safer but needs more time.

Tutorial

Procedure to change the "Secret" (Keymanagement):

1.

Open the Setting dialog and change to site Shareddrive Settings. Here, the encryption system and the encryption algorithm can be selected.

In the case of the SYMM-System can optionally select between Password based  or Smart card based on the side Key management -> SYMM-System.

 
2. Change to site Shareddrive > Management and select the SHAREDDRIVE from the list.

 
3. Press icon Change Password, SYMM >> HYBRID or HYBRID >> SYMM
(The button is displayed in the settings; see table)
4. Input of the previous "Secret" (password, PIN, chipcard, CD/DVD or USB-Token)
5. Input of the new "Secret" (passwort, PIN, chipcard, CD/DVD or USB-Token)

  In case of the certificate based HYBRID-System the authorized certificates are defined in the abylon CERTMANAGER!

See also

(c) 2001-2010 abylonsoft (Last Update / Stand 12.01.2010)