Creating secure virtual volumes

Stormshield Data Virtual Disk makes it possible to guarantee the confidentiality of the data that users store on their hard disks, by creating encrypted virtual volumes: only the owner and authorized users can access secure volumes.

Stormshield Data Virtual Disk uses a small amount of resources (memory and CPU) and files are encrypted in real time when they are written and decrypted when they are read. Applications can directly access the protected information of files located on a virtual volume.

With Stormshield Data Virtual Disk, you can:

  • Create a secure virtual volume on which the user can save confidential data. See section Creating a secure volume.
  • Mount a secure volume on the workstation, i.e., connect a virtual volume on which the user can save confidential data. See section Mounting a secure volume.
  • Unmount a secure volume on the workstation, i.e., disconnect the virtual volume. See section Unmounting a secure volume.

When users create a secure virtual volume, they define a list of authorized users. These authorized users are users who can mount and unmount the secure volume and access the content of the volume. See the section Editing the list of users.

The container file (.vbox extension) represents the volume encrypted from Windows Explorer. The encrypted volume corresponds to the content of the container file.

For more information on how to configure Stormshield Data Virtual Disk in SDMC, .refer to the SDS Enterprise Administration guide.

Refer to the following sections on how to use Stormshield Data Virtual Disk.