Do you have a business requirement where data needs to be shared securely between protected sites managed by different ePO servers? Do you also want to ensure that this data isa ccessible only within a controlled environment? This use case can be easily accomplished with McAfee Removable Media Encryption functionality, and this simple process is outlined below :


Step 1:

(Site 1) The end user responsible to send the data to the protected site is assigned the encryption key & policy by the Administrator


Step 2:

(Site 1) The user copies data to the device. All files copied to the device are transparently encrypted with the configured encryption key. The device can be of any make/model.There are no restictions in terms of either size of the files or the device. If "Ignore existing content" sub-option is selected, existing files/folders on the device will be left untouched.


Step 3:

Encryption key details are shared between the two protected sites (ONE TIME PROCESS)


Step 4:

(Site 2) Recipient is assigned the encryption key with which files copied to the USB device were encrypted.  Recipient can transparently read any file(s) off the encrypted USB device


This “file based”encryption approach ensures that encrypted USB devices can only read on systems with EEFF/FRP client software installed (with the encryption key available).Any attempts to read the encrypted files in an unapproved/unauthorized environment will be unsuccessful. So even if the USB device is lost or gets lost in transit, attacker will be unable to read the contents on the device.


Detailed steps can be found in this document :


Note : File & Removable Media Protection (FRP) was previously known as Endpoint Encryption for Files & Folders (EEFF).