Encrpytion - A quick insight.

I'd just like to talk about the way we handle encryption at Jackson Systems.

So at Jackson Systems, we use Encryption. Every Server, Hard Drive, Memory Stick, PC, Laptop... if it holds any form of data - then we encrypt it. Our Servers, be it physical or virtual all require a password to boot - without that password the server is useless. Once you've booted up the server you are then required to 'unlock' the Hard drives - a strong passphrase is required.

If A server was stolen and a hard drive removed, the drive(s) would be absolutely useless without the unlock phrase. Sure, you could wipe the drives, but any chances of data recovery are slim.

Yes, it is an annoyance if we reboot a virtual machine or server and we have to go through the procedure to unlock the server and then unlock all disks - but I'd rather that.

It doesn't really matter what the machine is doing or what the disk is storing, we try to keep procedures and practices in place as default, we keep everything encrypted. Even the desktop PC's here and laptops are all encrypted - Especially laptops. They require a password on bootup. If you steal my laptop, then its state without the crypto password would be useless, you would have to wipe the machine to be able to use it - you'll need to know/reset the BIOS password too. All of our machines require a BIOS password.

Just a quick insight!