Device Integrity Protection - Deploy SecureDoc only on managed devices that have been hardened against attack

While SecureDoc performs an invaluable service ensuring that data is protected by encryption, and that user access to SecureDoc-protected devices is locked down and governed by permitting only specific users to authenticate at Pre-Boot, there are other risks that any security-conscious organization should be aware of and include in its overall security design.

Deploy SecureDoc only on managed devices that have been hardened against attack

WinMagic recommends that SecureDoc be installed only on devices that have been hardened using Anti-Virus, Anti-Trojan and similar tools (or that will be so hardened following initial encryption and before sensitive data can be written to the device).  These tools should be highly competent, and kept up to date on a regular basis.
Similarly, devices should be hardened against Network-based attack through the use of a firewall.

NOTE: See also Knowledge Base Article number 426 in this series (click Search, and in prompt for search by article number, enter 426).