O'Reilly logo

MCSE: Windows 2000 Exams in a Nutshell by Paul Murphy, Michael Moncur

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Encrypting Filesystem (EFS)

EFS Terminology

File encryption key (FEK)

A key that is associated with a particular user account.

Recovery agent key

The recovery agent key is also used to encrypt and decrypt files along with the FEK. If the FEK is unavailable, the recovery agent key can be used to decrypt the file.

Data recovery field (DRF)

The section of an encrypted file that contains information regarding the FEK and recovery agent keys.

Public key

The key that is used to encrypt files. It is stored within the files it has encrypted.

Private key

The key that is used to restore encrypted files. It is kept private and is used to restore files that were encrypted with its matching public key.

Key store

The location where private keys are stored.

Protected storage service

Generates a master key that is used to encrypt a user’s private key.

Master key

An EFS system key that encrypts the user and recovery keys so that either key can recover the file.

System key

An optional security measure that can be used to encrypt all the master keys generated by the Protected Storage Service.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required