Configuration of Sophos SafeGuard Disk Encryption to achieve a certified configuration (FIPS-compilant)

  • Article ID: 109117
  • Updated: 30 Sep 2010

Sophos SafeGuard Disk Encryption 4.60

Client OS

Windows 2000 Professional SP4, Windows XP SP3

Server OS



Do any premises exist, regarding the configuration of Sophos SafeGuard Disk Encryption and FIPS?


To enable Sophos SafeGuard Disk Encryption to be implemented in a certified configuration, while also ensuring the maximum security provided with the product, the system should be configured as follows:

- Installation with PBA

- Minimum password length: 6 characters

- Activate complete encryption of the hard disk

- Activate Sophos SafeGuard Disk Encryption’s screen lock

- When defining keys manually, enter as large a number of randomly selected characters (max. 32 characters) as possible. No trivial keys should be assigned as they can be guessed easily by an attacker.

keywords: FIPS, sde

If you need more information or guidance, then please contact technical support.

Rate this article

Very poor Excellent