Strong Data Protection
Encryption Plus Hard Disk uses a FIPS-certified AES algorithm with a strong 256-bit encryption key to protect documents, system files, applications, and even unused hard drive space.

Single Sign-On
Users never have to change the way they work. At the start of every session, users simply log on, and Encryption Plus Hard Disk's Single Sign-On function will transparently and simultaneously grant users access to their computers and the network, with password synchronization to update Windows passwords whenever they change.

Scales Easily
Encryption Plus Hard Disk can be distributed and managed easily from a central location, using standard electronic distribution tools and its own self-contained, powerful Administrator Program.

Lowest Total Cost of Ownership
Encryption Plus Hard Disk offers the lowest total cost of ownership of any competing solution. It requires no additional software or hardware purchases, no certificates or certificate fees, no directory, no server, no special administration or staffing, and no user training. With Encryption Plus Hard Disk, there are no hidden costs. For more information about this full disk encryption software solution, see Encryption Plus Hard Disk: Lowest Total Cost of Ownership.

Eliminates Costs Associated With Password Resets
Encryption Plus Hard Disk includes Authenti-Check®, a self-service password reset method that eliminates support calls due to forgotten passwords.

Certified Data Protection
Encryption Plus Hard Disk meets exacting standards. Independent IT security laboratories working under the guidance of the US National Security Administration, the National Institute for Standards and Technology, and others have verified the performance of our encryption technology, which is now Common Criteria-certified and FIPS 140-2 certified.

How It Works

Encryption Plus Hard Disk includes an Administrator Program and a User Program.

The Administrator Program
The powerful Administrator Program generates the User Program via an easy-to-follow wizard. Using the Administrator Program, the corporate administrator can create, modify, or revoke a user program account at any time.

Security features administrators can manage include the following:

Control User Password Settings. Require stronger and longer passwords, restrict the number of times that passwords can be reused, force users to modify passwords after a specific number of logons.

Expire User Accounts Anytime. Deactivate an account whenever necessary, and require the user to contact an administrator to authenticate and gain access.

Enable Data, Network, and Account Protection Features. Additional functionality for this data security software allows corporate administrators to enable the following safeguards:

• Automatically disable the User Logon if the user fails to successfully enter a correct user ID and password after a specified number of attempts. This denies unauthorized individuals access to the computer, applications, and the network.
• Remotely lock out any User Account at any time, for any reason. This is valuable when a computer is stolen or if an employee is about to be terminated.
• Remotely modify Local Administrator accounts. Local Administrators who may be reassigned or terminated or who may become suspect can be denied the ability to access the user accounts they manage.

Other administrator features include the following:

Allow Background Encryption. Allow employees to use their computers while initial encryption of the hard drive takes place. Eliminates user downtime.

Adjust Initial Encryption Speed. Faster speed settings draw more resources from the microprocessor. Slower speed settings allow users to draw more power from the CPU while initial encryption is taking place. Even with the slower speed settings, users can still use their computers while initial hard disk encryption takes place.

Enable Single Sign-On/Password Synchronization. Manage network access by enabling or disabling Single Sign-On, and Windows Password Synchronization. Encryption Plus Hard Disk supports Windows and Novell for identifying and authenticating users to the network.

Distributing the User Program
Administrators can deploy the User Program by remote silent installation.

Remote silent installation does not require the user or an administrator to be physically present at a workstation during installation of the user program. Administrators can silently and automatically boot users' protected computers. No one is required to respond to installation prompts or to initiate a restart process. Various electronic distribution (push) tools can be used.

In addition, administrators can distribute this data security software to their users by pre-encrypting computers or ghosting identical hard drives.

The User Program
Once the User Program is distributed, users must create a user ID and password combination, based on the requirements defined in the Administrator Program. Data protection begins immediately. Thereafter, encryption and decryption work on-the-fly, transparently. Users are free to work as usual.

Encryption Plus Hard Disk requires no user training. Users must know how to create a user ID and password — that's all.

Initial Encryption
Based on settings, hard drive encryption begins the moment the program is installed. Initial encryption takes very little time. Some drives can be fully encrypted at a rate of two minutes per gigabyte — or less.

Simplified Password Recovery
When users forget their passwords, they do not call the Help Desk for support. Encryption Plus Hard Disk will automatically launch Authenti-Check®, GuardianEdge's secure self-service password recovery program. Users regain access to their computers after they create a new password.

Alternatively, administrators can remotely help users regain access to computers via the One-Time Password Recovery program, a simple to use challenge-response administrative program for authenticating and controlling users.

Server Console Available
For administrators that want a centralized, server-based console to monitor, manage, and update Encryption Plus Hard Disk user accounts, GuardianEdge offers the Encryption Plus Management Console.

Encryption Plus Management Console is an optional web server that provides real-time centralized management and auditing access. It offers remote administrative control over user password settings, Single Sign-On, account expiration, and more, including remote administrative recovery.

Administrator Program Logon
Click to enlarge image

Password Management
Click to enlarge image

User Logon
Click to enlarge image

Encryption Status: Encryption Plus Management Console
Click to enlarge image

Encryption Plus Hard Disk
Current Version	7.1.7
Common Criteria-Certified Version	7.0
Program Icon
Operating systems	Windows XP, 2000 Windows 2000 Server and Server 2003
Disk encryption algorithm	AES 256-bit
Other cryptographic algorithms	RSA, Elliptic Curve Diffie-Hellman, OpenSSL Random Number Generator
Boot sector protection?	Yes
Administrator key recovery?	Yes
User self-service key recovery?	Yes
Single Sign-On	Yes
Installation process	Remote network or local
Hibernation Encryption	Yes
Maximum disk size that can be encrypted?	1 terabyte (up to 8 partitions)
Adjustable initial encryption speeds?	Yes
Partition or full disk encryption?	Yes
Keyboard Language Support	Supports more than 30 keyboard layouts

Pricing

Pricing is based on the number of end user licenses an enterprise purchases. The Enterprise Starter Pack allows for up to 50 licenses, while purchasers of larger volumes receive significant discounts. Licenses are sold in perpetuity, so enterprises avoid annual license renewal fees.

Annual Maintenance and Support (AMS) is a renewable option that is priced separately and includes product upgrades. It allows subscribers online and telephone access to GuardianEdge's comprehensive technical support resources.

Evaluation Copies

Evaluation copies of Encryption Plus Hard Disk are available to qualified enterprise buyers. Simply complete the online contact form.