The Low Down - FileVault
FileVault: What is it and why?
Also, do you need it?
Keeping data secure is something everyone should be thinking about and not just having a backup in case the worst happens. What happens if the even worst happens and someone else ends up with your laptop, complete with all your files, messages and emails? Naaaaaasty!
Apple have long (since Lion) offered a solution to this problem. Over the years how it works has changed but basically it always involves encrypting your data so no-one else can read it.
In it's original form FileVault would encrypt your home folder only. Since this is where all your data usually resides this seems a good plan. Technically FV (lets save time here) uses 128bit encryption and a 256 bit key - basically your unguessable password. Once turned on FV would encrypt your whole user folder. This meant that anyone who logged onto your computer with another user account (including root) or from an external drive would not be able to access your data. Using FV also meant turning automatic log off since that bypassed the whole point! Not too bad, but since only your user folder was encrypted any data stored outside of it, and yes loads of people do create folders outside their user folder (why??) would remain readable. Also at the end of the day your computers new owner could simply delete your account and start again.
FV2 steps things up a notch using what is called whole disk encryption. This time FV seals your entire drive behind it. When you fire the machine up it asks for your user password immediately before proceeding to boot and allow access to your data. This means that without your user password the entire hard drive is unusable. Restting the user password via terminal etc does not reset the FV key so this work around won't help. The only option is to entirely erase the drive and start again, the ultimate protection for your data if not your computer.
So what's not to love? Well for a start if you forget your user password (it happens don't smirk), and you don't have your FV key then you are locked out from your data. For ever. Even Apple can't help. This means using FileVault makes having a backup even more important. But you knew that already.
FileVault 2 decrypts your data once (in essence) so the loss of performance in use is basically not noticeable. Older machines running FV1 which decrypts on the fly may suffer some lag.
So, should you use it? Well some professionals are required to, if you are a GP or other medical professional and you loose your laptop and it is NOT encrypted then you can be struck off and loose your livelihood along with your laptop (or desktop). For other users the penalties are less draconian but on balance it's a free to use, integrated security solution. If you are prepared to maintain an up to date backup (or loose all your data in the event of a problem) then I would definitely say its worth the minimal hassle to use.
It might not be exiting, and it won't stop your laptop being stolen, but if the worst happens it will keep your personal data safe.
If you have any queries about FileVault then ask away, I am always happy to answer Mac questions. Or give me a call on 07711434912 or drop by www.swindonmac.com
Keeping you and your data healthy!