9.1 Securing a Volume

When we examined file systems, Eve had asked to borrow a USB drive from which all data had been deleted (Section 5.1). Eve could have tried to recover private bookkeeping files from the drive. We can avoid such risks and protect everything on the drive, including the boot blocks, directory entries, and free space, if we encrypt the entire drive volume.

The word volume refers to a persistent storage area that contains its own file system. The volume may reside on any physical device with storage: a hard drive, a solid-state drive, a smartphone, or another mobile device. A device may often contain two or more volumes, each in a separate storage partition. If the system “sees” the volume as a single random-access storage ...

Get Elementary Information Security, 3rd Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.