Which file system feature provides encryption on a per-file basis in Windows NTFS?

Enhance your readiness for the Cengage Computer Forensics Test. Dive into flashcards and multi-choice quizzes with helpful hints and detailed explanations to boost your preparation efforts. Gear up for success!

Multiple Choice

Which file system feature provides encryption on a per-file basis in Windows NTFS?

Explanation:
Encrypting File System (EFS) is the feature that provides encryption on a per-file basis in NTFS. It works by encrypting each file’s data with its own per-file key, and that key is itself protected by the user’s certificate and private key. This means only authorized users with the proper keys can decrypt the specific files, giving granular control over what remains encrypted. This is different from BitLocker, which protects entire drives at the volume level, and from DPAPI, which is a developer-facing API for protecting data rather than an OS-level per-file encryption mechanism. So the per-file encryption capability built into NTFS is EFS.

Encrypting File System (EFS) is the feature that provides encryption on a per-file basis in NTFS. It works by encrypting each file’s data with its own per-file key, and that key is itself protected by the user’s certificate and private key. This means only authorized users with the proper keys can decrypt the specific files, giving granular control over what remains encrypted. This is different from BitLocker, which protects entire drives at the volume level, and from DPAPI, which is a developer-facing API for protecting data rather than an OS-level per-file encryption mechanism. So the per-file encryption capability built into NTFS is EFS.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy