McAfee is pleased to announce the immediate availability of McAfee Drive Encryption version 7.1! Drive Encryption was previously known as “Endpoint Encryption for PCs and Macs,” AKA EEPC/EEMac.

 

Updates on the McAfee Complete Data Protection Suites can always be found at the McAfee Endpoint Encryption Community site: https://community.mcafee.com/community/business/data/epoenc

New Features:

 

1. User Directory

Extend your ePO managed drive encryption to systems with unmanaged, non-domain users. In addition to users managed in Active Directory, Drive Encryption can now also leverage these ePO-managed users for pre-boot authentication. Customers that are still on legacy Drive Encryption (EEPC v5.x) because of the need to manage standalone users can seamlessly migrate standalone user information into the new ePO User Directory. Customers can also migrate all encrypted endpoints to ePO management with zero end user impact.

 

2. Making Security Operate Behind the Scenes

Deliver a native Windows user experience for your end users on modern hardware that supports Trusted Platform Module (TPM) 2.0 or higher. McAfee now supports a new TPM secured pre-boot Authentication mode called TPM Auto Boot where the encryption key is securely derived on the fly from the TPM during a measured boot process. McAfee Drive Encryption silently operates behind the scenes and automatically comes to the foreground and locks the device when anomalous activity is detected.

 

3. Harden your Modern Windows Systems from Cold Boot     Attacks
On modern Windows platforms capable of support the new Connected Standby mode, the user is provided with an Instant On (iPad like experience). These systems are always in standby power state requiring the encryption key to be always in RAM making them susceptible to memory scrubbing, cold boot attacks that can scrub the encryption key from RAM. When the device enters the connected standby state, McAfee will erase the encryption key from RAM and move it to a secure area on Intel hardware hardening the system from cold boot and memory scrubbing attacks.

 

Drive Down Help Desk Operational Costs due to Password Resets

Our customers tell us that the majority of help desk costs for drive encryption are typically related to end user password resets. Leverage the new McAfee Endpoint Assistant companion app for iOS and Android to completely offload the pre-boot password reset related help desk costs to end users. Enable end users to securely reset pre-boot passwords even when on a plane with no access to a telephone to call help desk.

 

The App for Android is available from the Google Play App store @ https://play.google.com/store/apps/details?id=com.mcafee.endpointassist. The App for iOS has been submitted to Apple for approval and is expected to be available from the Apple AppStore in Feb 2014.

 

Large Number of Users in Pre-boot Environment
The McAfee pre-boot environment has now been improved to support up to 5,000 users without perceptible performance degradation during pre-boot authentication. The previous limit was a maximum of 250 users in pre-boot. You can now safely provision all users to shared desktops enabling any user to use any system.

 

Support for Windows 8.1

Extend ePO managed McAfee DriveEncryption to endpoints running Windows 8.1. Seamlessly upgrade your Windows 7and 8 systems encrypted with McAfee Drive Encryption to Windows 8.1 without having to decrypt and re-encrypt the drives.  On new systems that support TPM 2.0, leverage the newly introduced TPM secured auto boot mode. Leverage McAfee Drive Encryption to secure your brand new systems capable of Connected Standby to ensure they are not susceptible to cold boot attacks.

 

A note on OS X Support:

 

Drive Encryption v7.1 is a Windows only release, unlike Endpoint Encryption v7.0 which was both Windows and Mac OS X. Customers who require support for encryption on OS X should use the recently launched Management of Native Encryption (MNE) v1.0 offering for the management of FileVault. If you are already an encryption customer then you are automatically entitled to use Management of Native Encryption (MNE) v1.0.

 

For More Information:

 

Supported Environments for Drive Encryption v7.1:

 

Frequently Asked Questions:

 

Videos:

 

On-Demand Customer Webcast: