“Encryption for all”

According to the article published recently at tmcnet.com, to prevent the information from being compromised from poorly protected servers, stolen laptops, or misplaced portable media, it is essential to encrypt all sensitive information stored on portable computers and media, including backup media.

“Although no federal laws or guidelines require encryption to protect confidential information, disk or data encryption is the easiest way to prevent unauthorized access.”

Here are some rules for protecting confidential data:

1. Create a data encryption information policy and educate employees.
2. Use a proven and secure software product.
3. Enable automatic encryption of data or the media it resides on.
4. Ensure that the password, passphrase, or secret key used to protect the data is nontrivial and stored securely.
5. Create and maintain a key escrow program so that encrypted data can be recovered if the main user loses the key.

“The hardest choices will be what to encrypt and what product to use. You can encrypt the entire media or just the data. Encrypting the entire media is a better choice because application software often leaves plain-text remnants of crypto-text in unprotected areas. An attacker using a bit-level analysis tool could extract the plain-text remnants.”

This blog is run by the authors of FindProtected.
FindProtected is an effective security program that allows you to search your network for password protected files. With FindProtected, you can properly identify protected files containing sensitive data on your network and relocate them if necessary.

Leave a Reply