Ans :
EFS designed to be implemented by a user, and is designed to be transparent; it can be used where it was not initially intended. EFS allow for Recovery Agents and the default Recovery Agent is the Administrator. These agents have configured public keys that are used to enable file recovery process. But, the system is designed in such a way
that only the file recovery is possible and the recovery agent cannot learn about the user’s private key.
Data Recovery for those companies and organizations that have the requirement of accessing data if an employee leaves, or the encryption key is lost.
The policy for implementing Data Recovery is defined at a Domain Controller. And this policy will be enforced on every computer in that domain. In case EFS is implemented on a machine that is not part of domain, the system, will automatically generate and save Recovery Keys.