Full Disk Encryption

Full Disk Encryption

Full Disk Encryption delivers reliable hard drive encryption for laptops with classified data processing.

Download Datasheet
  • Overview
  • Key Features
  • Description
  • Specifications
  • Add Ons
  • Resources
Protect classified data on the hard drive level

Protect classified data on the hard drive level

Full Disk Encryption offers sector-based hard drive encryption for laptops – BSI-approved for classified environments. It ensures robust protection even for laptop theft or loss, bypassing vulnerabilities like password breaches. Also available as non-certified version.

  • Key Features

  • Description

  • Specifications

  • Add Ons

Approved for: VS-NfD, RESTREINT UE/EU RESTRICTED, NATO RESTRICTED

Approved for: VS-NfD, RESTREINT UE/EU RESTRICTED, NATO RESTRICTED

Designed in accordance with the requirements of the BSI and specially developed for German public authority customers and the secret-protection industry.

Sector-based, full hard-disk encryption

Sector-based, full hard-disk encryption

Reliable data security through user-transparent partition encryption with reliable encryption algorithms.

No impact on device performance

No impact on device performance

Full Disk Encryption uses proven encryption algorithms and maximizes data security by encryption of all files, including system files, configuration files, swap and temporary files, without impacting device performance.

Highest security even with shared use of laptops

Highest security even with shared use of laptops

Offer the possibility of several people using the same laptop without the shared use of passwords or smart cards.

Convenient and user-friendly login process

Convenient and user-friendly login process

Based on the unchanged Windows operating system login process after the pre-boot authentication, Full Disk Encryption provides secure and convenient device usage for the users.

Utimaco Full Disk Encryption is the VS-NfD approved solution for public sector organizations who want to use conventional laptops in classified environments. The pre-boot authentication enables shared laptop use with individual passwords and no need to share smart cards while still providing convenient device access with an unchanged Windows login process.

Full Disk Encryption is approved for RESTREINT UE/EU RESTRICTED, NATO RESTRICTED and VS-NfD by the German Federal Office for Information Security (BSI).

image
Cryptographic Interfaces (APIs)

  • User-transparent partition scrambling

  • Secure entropy generation

  • Microsoft upgrade mechanism support

  • Support for various smartcards

User-transparent partition scrambling

  • Use of the encryption algorithm AES-256-XTS
  • Encryption using either full partition encryption or fast initial encryption
background image
image

Secure entropy generation

  • Using Utimaco’s CryptoServer General Purpose HSM with VS-NfD version (BSI approved)
  • By means of a BSI-approved true random number generator and smart card integration
background-image
image

Microsoft upgrade mechanism support

  • Support of the respective Windows 10 version 1809 and newer
  • Support of the integrated Microsoft In-Place Upgrade mechanism
  • Allows Windows 10 SAC to be upgraded to a successor version while retaining encrypted partitions/disks
background-image
image

Support for various smartcards

  • Atos CardOS 5.0 and 5.3 (BSI approved)
  • Telekom TCOS 3
  • Telekom TCOS 4 (BSI approved)
background-image
image
image

Others

LAN Crypt File and Folder Encryption CryptoServer General Purpose HSM
image

Certifications and Compliance

All Full Disk Encryption models are certified to:

Complaint and Secure

VS-NfD

Verschlusssachen - nur für den Dienstgebrauch (VS-NfD) stands for "classified information - for official use only" and represents one of the four secrecy levels used in German public authorities. Its disclosure to unauthorized individuals could harm the interests or reputation of the Federal Republic of Germany or its states.

Complaint and Secure

RESTREINT UE/EU RESTRICTED

RESTREINT UE/EU RESTRICTED is a secrecy level for EU classified information, indicating that unauthorized disclosure could harm the interests of the EU or one or more of its member states.

Complaint and Secure

NATO RESTRICTED

NATO RESTRICTED is a secrecy level for NATO classified information, indicating that the unauthorized disclosure of the information could harm NATO's interests.

image

Resources

Datasheet Full Disk Encryption

Utimaco Full Disk Encryption is a software for reliable, sector- based hard drive encryption approved for VS-NfD, RESTREINT UE/ EU RESTRICTED and NATO RESTRICTED data.

Download
Full Disk Encryption

Utimaco Full Disk Encryption is a software for reliable, sector- based hard drive encryption approved for VS-NfD, RESTREINT UE/ EU RESTRICTED and NATO RESTRICTED data.

Download
Brochure NIS2

Utimaco’s solutions enable organizations to build a reliable cybersecurity infrastructure in alignment with NIS2 and upcoming federal laws.

Download
NIS2 Directive Compliance

Utimaco’s solutions enable organizations to build a reliable cybersecurity infrastructure in alignment with NIS2 and upcoming federal laws.

Download
Brochure NSC und Vs Arbeitsplatz

Entwicklung einer souveränen und sicheren Cloud in Deutschland von führenden Cybersecurity-Experten

Download
NSC & VS Arbeitsplatz

Entwicklung einer souveränen und sicheren Cloud in Deutschland von führenden Cybersecurity-Experten

Download
White paper Data Protection for Organization

Improving the Level of Security Throughout Your Entire Data Ecosystem

Download
Data Protection for Organizations

Improving the Level of Security Throughout Your Entire Data Ecosystem

Download

Ready to Secure Your Digital Future?

Contact Sales

Related Products

CryptoServer General Purpose HSM

CryptoServer General Purpose HSM

The Hardware Security Module specialized for eIDAS-compliance and VS-NfD classified use cases.

Learn More

How can we help you?

Talk to one of our specialists and find out how Utimaco can support you today.
You have selected two different types of downloads, so you need to submit different forms which you can select via the two tabs.

Your download request(s):

    By submitting below form you will receive links for your selected downloads.

    Your download request(s):

      For this type of documents, your e-mail address needs to be verified. You will receive the links for your selected downloads via e-mail after submitting below form.

      About Utimaco's Downloads

      Visit our Downloads section and select from resources such as brochures, data sheets, white papers and much more. You can view and save almost all of them directly (by clicking the download button).

      For some documents, your e-mail address needs to be verified. The button contains an e-mail icon.

      Download via e-mail

       

      A click on such a button opens an online form which we kindly ask you to fill and submit. You can collect several downloads of this type and receive the links via e-mail by simply submitting one form for all of them. Your current collection is empty.

       

      How can we help you futher?