Hi all,
I am talking about a per file encryption solution(based on FS minifilter).
The current important concern is the loss of important data of organizations which use this solution. The loss might result by unknown issues and bugs, sudden power loss/ process termination and so on.
The design consists of many fields with variable value and length added to a file as the header and/or footer. This fields might be encrypted or not.
One suggestion is to use a separate file to store header/meta data to cut some undesired effects on data on FS level. This suggestion requires the FS minifilter to hide/manage the existence of the header file.
My specific question is:
how you evaluate the data-header separation suggestion?
Is it easy to handle the separate header file at minifilter level or I will face complicated issues?
The general question is:
How important is the data loss issue in such per file encryption solutions?
What is the good design for overcoming such issue?
What is your suggested design?