Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Is EFS secure?

01 Nov 2009   #11
logicearth

Windows 10 Pro (x64)
 
 

Quote   Quote: Originally Posted by sup3rsprt View Post
Only with extremely strong passwords, assuming EFS has no inherent flaws which is probably not the case.
Not really, the plain form of the user's password is not used as the means for creating the public key to decrypt the private key. However, complicated (extremely is overkill) passwords are encouraged, brute force is still an option so having "cat" as the password is greatly discouraged.

There have been several ways to try and get around EFS, but none of them directly attack EFS or have been made obsolete with new versions of Windows.

Quote:
What you've just quoted is basically everything I rapped up in a nutshell.
Aye, for clarification for the OP.


My System SpecsSystem Spec
.
01 Nov 2009   #12
sup3rsprt

XP, Seven, 2008R2
 
 

You contradicted yourself.
Quote   Quote: Originally Posted by logicearth View Post
Not really ... brute force is still an option
Besides, I can encrypt a file with EFS right now, then reset the user's password and I'm still able to decrypt the file from another account using EFS recovery tools (I only need to know the users previous password).
My System SpecsSystem Spec
01 Nov 2009   #13
logicearth

Windows 10 Pro (x64)
 
 

Quote   Quote: Originally Posted by sup3rsprt View Post
You contradicted yourself.
You misunderstood me. Having an "extremely" strong password is not required. A complicated password sure, but it does not need to be extreme.

Exchange of information is not one of my strong suites, I expect misunderstanding.
My System SpecsSystem Spec
.

01 Nov 2009   #14
sup3rsprt

XP, Seven, 2008R2
 
 

Complicated is a subjective term. Many "complicated" passwords can be cracked easily by the NSA.
My System SpecsSystem Spec
01 Nov 2009   #15
logicearth

Windows 10 Pro (x64)
 
 

I'm sure they could since I'm pretty sure the have several super computers at there disposal.
My System SpecsSystem Spec
01 Nov 2009   #16
sup3rsprt

XP, Seven, 2008R2
 
 

Many people even speculate that the NSA has backdoors into Windows which I thought is funny but I don't really believe it.
My System SpecsSystem Spec
01 Nov 2009   #17
Cluent

Windows 7 Professional
 
 

[quote=logicearth;348738]
Quote   Quote: Originally Posted by sup3rsprt View Post
Btw for the original question:
Quote:
Decrypting files using the local Administrator account

...

In Windows XP and later, there is no default local Data Recovery Agent and no requirement to have one. Setting SYSKEY to mode 2 or 3 (syskey typed in during bootup or stored on a floppy disk) will mitigate the risk of unauthorized decryption through the local Administrator account. This is because the local user's password hashes, stored in the SAM file, are encrypted with the Syskey, and the Syskey value is not available to an offline attacker who does not possess the Syskey passphrase/floppy.

...

Files encrypted with EFS can only be decrypted by using the RSA private key(s) matching the previously-used public key(s). The stored copy of the user's private key is ultimately protected by the user's logon password. Accessing encrypted files from outside Windows with other operating systems (Linux, for example, or even another instance of Windows) is not possible...Further, using special tools to reset the user's login password will render it impossible to decrypt the user's private key and thus useless for gaining access to the user's encrypted files.
That's great. Do you have a link to the original text? I would like to also find out more about "SYSKEY" and how it's implemented.
My System SpecsSystem Spec
01 Nov 2009   #18
sup3rsprt

XP, Seven, 2008R2
 
 

My System SpecsSystem Spec
01 Nov 2009   #19
Cluent

Windows 7 Professional
 
 

It sounds like they've addressed some if not all of the weaknesses. Is there a reliable resource out there that explains how to implement EFS (for home not corporate use) in such a way as to minimize the weaknesses without making it too inconvenient?

Or would it be better to just set up an encrypted archive with something like Truecrypt?
My System SpecsSystem Spec
01 Nov 2009   #20
Jordus

Windows Vista Business / Windows 7 Ultimate
 
 

Im sure EFS is fine for any home use. You also have to weigh the fact that whatever you have to encrypt at home is likely not worth the time it would take someone to crack it.

Just make sure you back up your key so you dont lose it all.
My System SpecsSystem Spec
Reply

 Is EFS secure?




Thread Tools




Similar help and support threads
Thread Forum
Just how secure do you need to be?
I've read a number of articles on-line about security, about the latest AES-256 encryption, and so on. Everything seems to be making the assumption that you're guarding against a highly skilled hacker that wants to crack your password and access your files. But really... just how secure do we...
System Security
Is UAC really secure?
I'm seriously considering dropping the UAC settings on my primary rig. Why? There's no real reason to keep it. It only provides a false sense of security. Check out this artice: CLICK ME
System Security
So how secure you are really ?
run a test of your security apparatus to see how robust..fine tuned...up to the mark it is.From key logging to firewall loopholes..from browser vulnerabilities to web anonymity. browser stealth/firewall/ port scan tests keylogger simulation test trojanhunter simulator commercial...
System Security
Is this secure?
Ok. PC#1 has a wireless connection to the internet. This connection only has TCP/IP 4 bound to the adapter, no file sharing or anything else. This PC has in addition, an ethernet card that is connected to PC#2 and has file sharing enabled with several shared folder between the two. PC#2 has no...
Network & Sharing


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 00:55.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App