Boot volume encryption (Linux™ and Microsoft Windows™)

Both Windows and Linux support boot volume encryption across all cloud platforms and physical server operating systems.

Automatic detection and provisioning of new devices

The SecureCloud Agent detects and uploads newly-attached devices to the Key Management Server inventory. If the drive(s) of the newly-attached devices are partitioned and formatted, the SecureCloud Agent automatically provisions the devices using in-place encryption.

Encryption Wizard for Microsoft Windows

Administrators can use the Encryption Wizard for Microsoft Windows to input cloud credentials, SecureCloud Agent configuration information, and provisioning details. The SecureCloud Agent automatically detects and displays all disks and raw partitions. Administrators can choose which disks they wish to encrypt in the wizard window.

Enhanced scripting for cloned devices

Administrators can quickly scale up large cloud deployments by encrypting the base image in the AMI. With this approach, all cloned instances are pre-encrypted. Scripts identify cloned instances to the Key Management Server, allowing the base image and all clones to share the same encryption key.

On-demand integrity checking

Administrators can now perform on-demand integrity checks at any time after an encryption key is issued to a SecureCloud Agent.

In-place Encryption

In-place encryption is also known as non-destructive encryption or in-line encryption. SecureCloud can now encrypt a data volume which contains a file system and data without destroying the data.