Does GuardianEdge Removable Storage use a file-based or volume-based approach to protect data?
GuardianEdge Removable Storage intercepts files read from and written to storage devices. For file reads, GuardianEdge Removable Storage will allow unencrypted files to be opened in a manner identical to how the files would be opened if GuardianEdge Removable Storage was not installed on the computer (provided there is not a No Access policy in place). For encrypted files, GuardianEdge Removable Storage will first try to decrypt the file using a workgroup key (if there is one), and then will try passwords that the user previously entered. If neither of these methods works, only then will GuardianEdge Removable Storage prompt the user to enter a password or, when combined with GuardianEdge Advanced Authentication, to insert a smart card or token to decrypt the file. When users write data to storage devices, GuardianEdge Removable Storage will intercept the write and, if a forced encryption policy is in place, will encrypt the file. Users will be prompted to enter a password and/or certi