Secure your Mac: Protecting Data

by Milind Alvares
Monday July 13, 2009

Secure your Mac: Protecting Data

by Milind Alvares on July 13, 2009

6 Comments
Post image for Secure your Mac: Protecting Data

secure-mac-series
We might take security for granted, until the worst actually happens. Imagine your deepest of secrets, personal documents, or intellectual property you’ve been working on for months being stolen without a trace left behind. Mac’s may not catch viruses, but they’re definitely not safeguarded from an attack from a hacker or perhaps someone who nabs your Mac at the airport. Here’s a little series that will keep your data only in places you want it to be. Let’s start with the core of what’s important: Data.

Files and Folders

Most of our computer work is saved to files. It could be financial records in a spreadsheet, a design job in a series of Photoshop documents, or maybe some personal pictures you don’t want scattered across the web. Safeguarding data by means of encryption is one of the oldest tricks in the book, and it seems to work pretty well. Mac OS X allows you to create highly encrypted disk images which can be used to store any form of data in an easily accessible form. We’ve even done a guide on how exactly to go about it. Third party developers have stepped up and made this process even simpler such that encryption and security remains transparent to the user.

FileVault

A tool built into OS X, is FileVault. This encrypts your entire home folder, while remaining totally transparent to the user. All you have to do is go to System Preferences > Security > FileVault and turn it on. You’re protected by two passwords, so if you forget the lower level password, you can reset it with the master password. Make sure you don’t lose it though, as there’s no way to crack a FileVault volume once it’s locked. I would also advice you to backup your data, since there have been reports of users being locked for no reason at all. As for the performance hit, FileVault locks and unlocks the home folder during login and logout, and uses very little resources during operation itself. Here’s “An Unencrypted look at File Vault” to help you understand what exactly File Vault means for your data.

filevault

Espionage

The best tool that I’ve tried so far is Espionage from The Tao Effect. This simple tool allows you to easily encrypt any files or folders with a simple user interface. Once it’s locked, the contents of that file are completely safe from any hack (that is, until the hacker knows your password). You can even lock application data such as Mail messages or iChat conversations. The performance hit is negligeable and for $25 a piece I’d consider this application highly recommended for any serious Mac user.

espionage-review

FileLock

Another simple tool for locking up bits of data, FileLock goes ahead and pushes the encryption to 448-bit blowfish. I’m not sure if the average person requires that much of encryption, but more the merrier. The resultant encrypted file (which is checked for data integrity) can be sent via email without fear of being cracked. The files can be opened on any computer with FileLock installed, even via a contextual Finder plugin. It’s not nearly as feature rich as Espionage, but I suppose those extra bits in encryption made it worth the mention. At CAD25, it’s a fairly average deal.

dropped

Data Integrity

While files and folders are important on your Mac, little bits of data are sometimes even more crucial to keeping your secrets close. Credit Card information, passwords to email accounts, and all kinds of digital notes can reveal information that’s too dangerous to even imagine.

1Password

The grand daddy of password managers, 1Password is the most robust data security tool on the Mac. Used by a majority of Mac users, Agile has really polished this tool. It will automatically fill in web forms for you, generate highly complicated passwords for different sites, and can even store credit card information, secure notes, and bits of data in its one bit database. All this is unlocked with one single password, hence the name. 1Password costs $40 for a single user license, and $70 for a family pack. It’s not the cheapest, but will go a long way in keeping your data secure, and your internet browsing experience as fun as possible.

1password-mac

SecretBox

A relatively new application from App4Mac, Secret box allows you to store bits of arbitrary information in its secure database. You can store passwords, software licenses, notes, bookmarks, credit card info, all secure in its 256bit encrypted database. The feature that I find most interesting, is that whenever you access a certain piece of data, only that small bit is decrypted, leaving the rest of the database locked tight. At $40 a license however, I’d say just go with the more tried and tested 1Password.

secretbox-review

File Erasing

While Mac OS X has a secure erase feature on OS X, it’s not very helpful when you need to destroy a single file or folder. You have to either securely empty the entire trash (Finder > Secure Empty Trash) or nothing. If you want to make sure your already deleted data doesn’t show up, you can launch disk utility, and secure wipe the free space of a partition (either 1 time, 7 times, or 35 times depending on how badly you want it to be gone).

Permanent Eraser

A tool built for a single purpose, Permanent Eraser will make sure your file is completely scrambled and wiped till it’s unrecoverable by any traditional means. I’m not sure if high level data forensics can read scrambled data, I’m sure there’s always a way, but for what it’s worth, this tool will make sure your data is gone. And it’s free.

pe_screenshot2

I think that’s enough of security for your files. We’ll take a look at some other areas you need to seal off in the near future. If you have any security workflow in mind, do share.


Tagged as: app4mac, espionage, file vault, mac, Reviews, security, Software

Reader Comments

Cody July 13, 2009 at 10:09 pm

I recently purchased 1Password roughly two weeks ago after the thirty day trial, and it’s worth every penny. I use their agile password keychain to sync passwords via Dropbox (if I add a new account password at one computer, it’s automagically synced to the other), and use the password generator to create strong passwords for gmail accounts. My favorite feature happens to lie in Safari, where I can use 1Password to go to and log in different websites in multiple tabs while I’m reading the news. When I’m done, I can go in the other tabs and I’m already logged in with my accounts and forums waiting to be utilized. It’s really cool.

Great article. I’ve had my eye on Espionage for a while in securing my college work and data, so I’ll have to give that trial a run.

   

MacStories July 13, 2009 at 11:04 pm macstories.net

Great post, I’m gonna save it for my Read it Later evening session!

   

Bradly July 13, 2009 at 11:15 pm

A free and easy way to protect data is to use Apple’s OSX “Disk Utility” located in the Utilities folder. I create a new disk image and click “New Image” and then select the “Encryption” check box. Can select 128 or 256-bit AES encryption. Great way to keep data secure on thumb drives too!

   

Gavin July 14, 2009 at 1:27 am

Bradly: Mentioned in the post so thanks for commenting without reading.

   

bob July 15, 2009 at 1:10 am

true crypt?
http://www.truecrypt.org/

I use it to keep files safe & encrypted. Plus, whatever encrypted files I might put on a thumb drive can be opened on a Windows machine using true crypt, so no matter where I am I have access to them.

   

dano July 16, 2009 at 9:17 am

Grandaddy?? As in oldest? Or what?

Web Confidential has been around since 1998, but hasn’t had any significant development since 2003. So 1Password has many more features and is much more useful. (I’m transitioning from WC to 1P.)

   

Leave a Comment

Previous post:

Next post:

Milind Alvares

Editor

Preshit Deorukhkar

Head of Operations

The Smoking Apples Team »

An Apple blog written and carefully curated by technology enthusiasts, Smoking Apples has been providing the latest of news, unbiased in-depth reviews, and critical opinions of Apple and its ever-growing community, engaging thousands of readers over the years. The resourceful blog, lively twitter feed, a beautiful magazine, form just one aspect of the internet awesomeness powered by iXyr Media.