Encryption of a specified alternate data stream - NTFS, XP

Question

Encryption of a specified alternate data stream - NTFS, XP

According to MSDN, each alternate data stream can be stored in encrypted form (NTFS encrypted state). The only API function I found to set the encryption state is EncryptFile (), which claims to encrypt all file data streams. So, is there a way to not encrypt all data streams in XP?

+3

windows-xp encryption ntfs alternate-data-stream

Doori bar Nov 11 '10 at 14:29

source share

2 answers

ParanoidMike · Answer 1 · 2010-11-14T06:16:18+0000

This MSDN article (wherever you find it) is incorrect. NTFS encryption (i.e., EFS) stores encryption keys in an alternative $ EFS data stream. There is only one EFS stream for each file, which would also make it impossible to encrypt other alternating data streams (unless they also used the same symmetric key, which would contradict each principle of EFS design that uses different keys for each file).

Please show the link to this MSDN article. I am convinced that this is a mistake (this would not be the only article published on microsoft.com that was not 100% more accurate - the authors of these articles are human). Hell, I posted material on MSDN, which was not 100% accurate earlier in my career.

Donal Heffernan · Answer 2 · 2015-05-05T09:09:09+0000

, ADS , , . $DATA, . , $EFS, . $DATA- . MFT () $DATA-, . . , $DATA.

Encryption of a specified alternate data stream - NTFS, XP

More articles: