Linux and Open Source

Steven J. Vaughan-Nichols & Paula Rooney
Home / News & Blogs / Linux and Open Source

Google offers Cauliflower Vest for enterprises using MacOSX Lion Server

By | February 23, 2012, 11:41am PST

Summary: Google engineers released its Cauliflower Vest project under an open source license Wednesday. The tool, aimed at MAC OSX Lion Server administrators, is an end-to-end Mac OSX FileVault 2 full disk encryption solution for the enterprise. Google maintains the out-of-the-box FileVault 2 solution in the Mac OSX Lion Server is aimed at consumers and lacks enterprise features.

It’s always interesting when Google releases code under an open source license.  And this time,  the code, Cauliflower Vest, is delivered for enterprises that wish to deploy Mac OSX’s newest encryption technology.

Caulilower Vest, which is released under Apache 2.0, is an end-to-end encryption solution for customers deploying Mac OSX Lion’ Servers Filevault 2 technology. The project fills an enterprise need, Google maintains.

Google made the announcement on its open source blog yesterday.    

“FileVault 2 is a major, welcome addition to Mac OS X starting with Lion, as full disk encryption is an important part of securing your computer and its data. While the new FileVault 2 offering is very well suited to consumers, some enterprises may require additional features that are not provided out of the box. For example, FileVault 2 encryption is initiated voluntarily by users, lacks enforcement, and, by default, escrows recovery keys to Apple’s central server. It also relies on individual Apple IDs, which cannot be managed as a group.”

Google claims it has deployed the solution internally, but not clear if  the company will support Mac OSX admins that deploy it. “Employees at Google self-enable FileVault 2 using Cauliflower Vest - it’s tested and ready to help you make FileVault 2 part of your enterprise,” Google announced on its blog.

The project web site indicates that the released code includes a GUI client to enable encryption, an escrow service, a web GUI for management and a CLI tool to initiate a recovery key without any end user action required.

It “is an end-to-end Mac OS X FileVault 2 recovery key escrow solution,” according to information on the project site. ” While stock OS X FileVault 2 is consumer focused, the goal of this project is to provide enterprise features.”

The key features include the “ability to forcefully enable FileVault 2 encryption, automatically escrow recovery keys to to a secure Google App Engine server, and delegate secure access to recovery keys so that volumes may be unlocked or reverted,” the web site says.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Linux and Open Source”

Topics

Google Inc., Paula Rooney

Paula Rooney is a Boston-based writer who has followed the tech industry for almost two decades.

Disclosure

Paula Rooney

Paula Rooney owns no stock in the companies that she covers. She holds a 401K that is managed by Morgan Stanley.

Biography

Paula Rooney

Paula Rooney has covered the software and technology industry for more than 20 years, starting with semiconductor design and mini-computer systems at EDN News and later focused on PC software companies including Microsoft, Lotus, Oracle, Red Hat, Novell and other open source and commercial software companies for CRN and PCWeek. She received a silver award from the American Society of Business Publication Editors in 2005 for her profile on Linus Torvalds and edited and co-authored "Partnering With Microsoft," a book about Microsoft's channel published by CMP Publishing in 2004. Rooney graduated from the Columbia University Graduate School of Journalism in 1997. In her off time, she enjoys scuba diving, sailing, sun worshipping, running, reading, surfing (the net) and hanging out with her family. She resides on the shores of Scituate, Massachusetts.

3
Comments
Add Your Opinion

Join the conversation!

Just In

More Google spyware?
Cylon Centurion 28th Feb
I'm trusting Google software less and less these days...
View in thread
0 Votes
+ -
Sounds like an awful small need
Cynical99 23rd Feb
for an awful small market
1 Vote
+ -
I agree.
jscott69 24th Feb
Sounds like one of those "Hmmm ... I wonder if we could do _this_?" kind of projects that answers a question that no one else has really asked.

But FileVault2 is a good upgrade over FileVault and this seems like it does provide enterprises that have more stringent security needs with a way to make OS X's security features that much more manageable in the enterprise.
-1 Votes
+ -
More Google spyware?
Cylon Centurion 28th Feb
I'm trusting Google software less and less these days...

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix