Endpoint Encryption

I am looking for a way to limit the password attempts allowed when accessing encrypted files on removable storage devices.  The portable access utility allows 3 failed attempts followed by a 1 minute delay and then allows 3 more.  If you have SEE RSE installed on a machine you can keep throwing passwords at it indefinitely.  Can either of these behaviors be adjusted?

How are you protecting the documents?  Are you only using passwords or passwords and certificates?

If your only using password and only 1 password (ie you are not using session passwords in 8 or workgroup passwords), then do you really want them to have a limit?  If you do, then the file will never be able to be recovered.

we are encrypting with a password and a recovery cert.  Our concern is without a limit set if one of our removable devices is stolen a hacker can keep trying passwords until they are successful.  We have good complexity requirements but if a hacker is allowed to continue to try different combinations they will eventually get access to the file.

I can see the issue now.  The only thing I can think is if you say the utility allows 3 attempts then pauses for 1 minute, this setting must either be built in or gets taken from the framework settings, even though this says it only relates to full disk.

Maybe you could review your framework settings to see if there are additional settings that will help.  i couldn't see any that specifically lock a file though so it would only be strengthening it a bit more, which you may not wish to do.

Sorry I couldn't be more help.