Encryption protects information from non-authorized users—such as thieves who steal a laptop for its information, a notoriously common occurrence today—who may be able to access the system but are prevented from being able to decrypt the protected data.

StormShield offers transparent, on-the-fly encryption of the files and folders stored on the endpoint hard drive. Policies that control encryption are based on folder or file types, and can include the ability to limit encryption only to sensitive folders, such as MyDocuments subfolders.

With traditional, "whole drive" encryption, any user who logs onto  the PC can access all the information stored on its hard drive. This implies for instance that IT staff conducting routine maintenance operations will have access to sensitive information such as customer data, confidential emails or sales figures on any user's desktop.

In contrast to this limited approach, StormShield instant decryption can leverage an secondary authentication – or a third-party strong authentication system, such as Aladdin’s eToken – to let only the user access protected data. This ensures that confidential data remains encrypted whenever the PC is used by someone who has no right to access sensitive information.

While on-the-fly encryption policies are centrally managed by the StormShield administrator, the solution enables users to create password-protected, self-extracting encrypted containers for communicating protected information. Data protection is also reinforced through secure file shredding, and swap file cleaning.

StormShield gives you:

• Transparent encryption without user action
• Integrated with Windows authentication, with optional secondary authentication
• PC can be used while files may remain encrypted, depending on users' rights
• Secured file erasing
• On-the-fly encryption with negligible performance impact
• Self-extracting encrypted archives