Category Archives: Encryption
New Mexico Enacts Data Breach Notification Law; Tennessee Reinstates Encryption Safe Harbor – The National Law Review
Sheila A. Millar counsels corporate and association clients on advertising, privacy, product safety, and other public policy and regulatory compliance issues.
Ms. Millar advises clients on an array of advertising and marketing issues. She represents clients in legislative, rulemaking and self-regulatory actions, advises on claims, and assists in developing and evaluating substantiation for claims. She also has extensive experience in privacy, data security and cybersecurity matters. She helps clients develop website and app privacy policies, data security and access procedures, manage trans-border data flows, respond to data breaches and create training programs. She assists clients on digital media issues, helping them develop social media, blogging and user-generated content policies, and to understand advertising technology and online behavioral advertising issues. Ms. Millar also works with clients to navigate the array of federal and state requirements governing contests and sweepstakes, and advises on gift cards, coupons and rebates. She represents clients on advertising and privacy matters before the Federal Trade Commission (FTC), the Childrens Advertising Review Unit (CARU), the National Advertising Division (NAD), as well as in connection with investigations by state regulatory bodies and Attorneys General.
Read the original post:
New Mexico Enacts Data Breach Notification Law; Tennessee Reinstates Encryption Safe Harbor - The National Law Review
WhatsApp has end-to-end encryption, but dissatisfied customers are free to quit, Facebook tells SC – Scroll.in
Apr 25, 2017.
Dreaming of writing that book or taking that cruise when you hit your 40s? Well, this dream need not be unrealistic.
All it takes is simple math and the foresight to do some smart financial planning when you are still young. If you start early and get into the discipline of cutting down on unnecessary expenditure, using that money to invest systematically, you can build wealth that sets you free to tick those items off your bucket list sooner than later.
A quick look at how much you spend on indulgences will give you an idea of how much you can save and invest. For example, if you spend, say Rs. 1,000 on movie watching per week, this amount compounded over 10 years means you would have spent around Rs 7,52,000 on just movies! You can try this calculation for yourself. Think of any weekly or monthly expense you regularly make. Now use this calculator to understand how much these expenses will pile up overtime with the current rate of inflation.
Now imagine how this money could have grown at the end of 10 years and overcome the inflation effect if you had instead invested a part of it somewhere!
The fact is that financial planning is simpler than we imagine it to be. Some simple common sense and a clear prioritization of lifes goals is all you need:
A mutual fund is a professionally managed investment scheme that pools money collected from investors like you and invests this into a diversified portfolio (an optimal mix) of stocks, bonds and other securities.
As an investor, you buy units, under a mutual fund scheme. The value of these units (Net Asset Value) fluctuates depending on the market value of the mutual funds investments. So, the units can be bought or redeemed as per your needs and based on the value.
As mentioned, the fund is managed by professionals who follow the market closely to make calls on where to invest money. This makes these funds a great option for someone who isnt financially very savvy but is interested in saving up for the future.
So how is a mutual fund going to help to meet your savings goals? Heres a quick Q&A helps you understand just that:
The essence of mutual funds is that your money is not lying idle, but is dynamically invested and working for you. To know more about how investing in mutual funds really works for you, see here.
Disclaimer: Mutual Fund investments are subject to market risks, read all scheme related documents carefully.
This article was produced by the Scroll marketing team on behalf of Mutual Funds Sahi Hai and not by the Scroll editorial team.
See more here:
WhatsApp has end-to-end encryption, but dissatisfied customers are free to quit, Facebook tells SC - Scroll.in
What is vSphere 6.5 encrypted vMotion and how does it work? – TechTarget
VMware vMotion allows a live migration of operational virtual machines between host systems. The technology has...
Enjoy this article as well as all of our content, including E-Guides, news, tips and more.
By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.
You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.
been around for years and is well-proven. But the risk of compromise due to unencrypted data moving across the network (in flight) has promoted VMware to add encrypted vMotion in vSphere 6.5.
Encryption can ensure that any data involved in a migration arrives at a destination host intact and unaltered -- you can't read or change the encrypted content.
Although encrypted vMotion is easy to enable, it's important for administrators to understand the associated rules. Storage vMotion supports encryption, but only if the disk volume is already encrypted. If the disk volume isn't encrypted (at rest), Storage vMotion isn't available (in flight).
Encrypted vMotion also works for VMs. A VM that is already encrypted -- with VM encryption -- will always use vSphere encrypted vMotion. You can't turn off encryption in flight when the VM is already encrypted at rest. Encryption will continue for migration even if the VM encryption is later removed (disabled) or until the migration preference is manually changed.
However, if a VM is not already encrypted, administrators can choose to forego encryption (disabled), use encryption if the destination host is ESXi 6.5 compatible (opportunistic), or enforce encryption where migration isn't allowed if the destination host doesn't support it. This behavior can complicate environments where different versions of vSphere/ESXi may be in use. To make full use of vMotion encryption, all destination systems will need vSphere/ESXi 6.5 or later.
An interesting attribute of encrypted vMotion is that the encryption/decryption process takes place on a per-VM level. That means the VM is encrypted instead of the network. This eliminates any encryption-sensitive network configuration changes or certificate management issues that can complicate typical encryption techniques.
VCenter produces a random 256-bit key, along with a random 64-bit one-time code (a nonce). VCenter sends the key and code to both the source and destination host -- guest operating systems don't have access to the encryption keys.
The source uses the key and code to encrypt the VM, and the destination uses the same key and code to decrypt the VM. Users can't play back or hack the VM's migration data stream because of the use of a one-time code.
Beyond the need for vSphere 6.5 or later, there are several issues to consider when planning for vMotion encryption. First, you need an encryption key management system outside of vSphere. There can be an impact on the backup processes because there is only support for Ethernet backup traffic. This means cross-SAN backups are not available. In addition, options such as suspend/resume, VM encryption with snapshots, vSphere replication, and content library features are not currently supported.
VSphere 6.5 emphasizes security
Using virtualization security management to protect your infrastructure
How Horizon 7 Smart Policies gives security a boost
Read the original here:
What is vSphere 6.5 encrypted vMotion and how does it work? - TechTarget
CipherLoc Releases Encryption Performance White Paper – Yahoo Finance
Company's Innovative Approach makes Encryption Processing Faster
AUSTIN, TX / ACCESSWIRE / April 25, 2017 / CipherLoc Corporation (CLOK), a leading provider of highly secure data protection technology, today announced the availability of a new white paper, "An Analysis of Encryption Performance," which summarizes how CipherLoc's unique technology, which is designed to make encryption faster, safer, and massively scalable, can be used to reduce the latency penalty associated with the deployment of encryption algorithms.
The foundation of modern security relies on encryption technology to protect sensitive data and maintain user privacy. However, it is a well-known fact that encryption technology comes with a price: increased latency. These latencies get worse when the key sizes are increased to stave off the continued advances in computing horsepower. This is one of the reasons why encryption has not been ubiquitously deployed despite the many security and privacy benefits it can provide.
The just-released white paper takes the most widely used encryption algorithm on the market today, the Advanced Encryption Standard (AES), and analyzes its performance both when running in standalone mode (i.e. without the CipherLoc utility included) as well as when running with the CipherLoc acceleration utility enabled. The white paper also compares how a highly-secure AES algorithm enabled with CipherLoc's utility performed vis--vis several other well-known encryption algorithms.
The white paper shows how the latency penalty associated with the AES encryption process is dramatically reduced when that same algorithm is accelerated using CipherLoc's innovative encryption utility. Depending on the file size and underlying hardware, performance improvements of up to 50% can be seen which in turn leads to better utilization, higher efficiency, and greater scalability when deploying encryption technology.
CipherLoc's solution is not a new algorithm but rather a utility that can be added on top of any existing cryptographic encryption algorithm. Once applied, the CipherLoc utility will not only improve the underlying encryption processing speed, it will simultaneously strengthen the data protection security. It will also make encryption algorithms more scalable by obviating the need to be constantly increasing the key size to maintain current levels of security. CipherLoc also simplifies the key management infrastructure by using one-time-use ephemeral keys that do not require key storage. In short, CipherLoc's easy-to-deploy technology makes encryption processing faster, stronger, and massively scalable.
Testing results are available upon request at info@cipherloc.net or by contacting us via the Company's website at http://www.cipherloc.net.
About CipherLoc Corporation (CLOK)
CipherLoc Corporation is a data security solutions company whose vision is simple - Protect the World's Data. Our highly innovative solutions are based on our patented Polymorphic Cipher Engine which is designed to take existing encryption algorithms and make them better, faster, stronger, and massively scalable. We deliver easy-to-deploy software solutions that can be added to any existing product, service, or application. In short, we keep information safe in today's highly dangerous world. For further information, please go to http://www.cipherloc.net
Read More
Go here to see the original:
CipherLoc Releases Encryption Performance White Paper - Yahoo Finance
Encrypted Chat Took Over. Let’s Encrypt Calls, Too – WIRED
Slide: 1 / of 1. Caption: Wired
As end-to-end encrypted messaging apps have exploded in popularity, several well-known services have added encrypted calls as well. Why not, right? If it works for text-based chat, voice seems like a natural extension. If only it were that easy.
Encrypting calls has plenty of value, keeping conversations strictly between the two parties. They can circumvent government wiretaps, or criminal snooping. But a host of technical challenges with facilitating the calls themselves has slowed the spread of voice over internet protocol overall. Bandwidth is expensive. Firewalls and network filters make it harder to route data streams. Even basic call quality issues, like delays and echoes, prove difficult to fix. Adding encryption on top of all of this takes additional resources and specialized developers.
All of which has delayed encrypted callingbut not stopped it. And a new groundswell of enthusiasm is bringing more options than ever.
The challenges of making reliable encrypted calling starts with the underlying premise of internet-based calls. Theyre hard. While VoIP calling has become more reliable over the years, it remains technically challenging in itself, especially when people use cellular data instead of more stable ethernet or Wi-Fi connections.
Despite those challenges, Signal, the well-regarded secure communication platform, has offered encrypted calling since 2014. And when WhatsApp followed in 2016, bringing encrypted calls and video chat to more than a billion users, it helped shake off some longstanding inertia. Other secure messaging apps like Wire and Telegram have added encrypted calling over the last year. Signal itself even rolled out call quality improvements in February.
Signal developer Open Whisper Systems open-sources its code, so that companies can borrow from it to build their own encrypted chat and calling features. For example, while WhatsApps overall setup is proprietary, it bases the key exchange for its end-to-end encrypted messages and calls on Signal Protocol. Its users have to trust that it is implementing true end to end encryption in the way it claims. In exchange it brings some form of end to end encryption to an enormous user base that would probably otherwise have little exposure to or protection from the feature. And customers who dont have faith in a large provider like WhatsApp now have other options, given the recent proliferation of both VoIP in general and encryption specifically.
Theres so much happening right now in this space which is really exciting, says Nathan Freitas, the founder and director of the Guardian Project, a privacy and security nonprofit that worked on an encrypted calling platform called Open Secure Telephony Network. In 2012 there was just Skype basically. Google Hangouts didnt even exist. FaceTime existed kind of. So were really happy when theres so much public innovation that includes privacy and security.
Though not nearly as much as there could be, if everyone could get on the same page.
As with messaging, end-to-end encrypted calls require that both ends of the conversation use the same system. In other words, using Signal to call a landline wont cut it; you need to connect with another Signal user. Given this reality, many developers naturally gravitate to implementing encryption in closed systems; its easier both to manage and monetize.
For users, though, this approach has downsides. Unless the developer makes the product fully open source, or allows for extensive independent auditing, theres no guarantee that the encryption implementation works as advertised. The lock-in factor also limits who you can safely communicate with, which slows adoption.
Imagine, instead, an open communication standard that includes end-to-end encryption. It would allow secure communication with more people between different products and interfaces, because the protocols facilitating the end to end encryption would be the same.
The Guardian Projects OSTN experiment attempted to create exactly that sort of comprehensive, open communication suite. It focuses on using existing open, interoperable communication standards, employing classic protocols like ZRTP, which was developed in the mid 2000s by PGP creator Phil Zimmerman, and SRTP, which was developed in the early 2000s at Cisco. It also coordinates and controls its voice calls using the Session Initiation Protocol, developed by the telecom industry in the mid 1990s.
That retro backbone didnt come by choice; there simply arent a lot of more modern open protocol options available. Most big VoIP plus encryption advances have come from private companies like Skype (now owned by Microsoft), Google, and Apple, who offer varying degrees of encryption protection for calls and tend to value locked-in users over interoperability. That left OSTN with old tools.
While theyre very powerful, these are things that are 10, 20, 30 years old in terms of the architecture and the thinking, Freitas says. Theyre definitely showing their age.
And while a few smaller services, like PrivateWave and Jitsi, have adopted OSTN, the decision by larger companies to go it alone has limited its open-protocol dreams. Thats especially a shame for people who need absolute guarantees of security.
With proprietary apps, it can be hard for a user to tell if end-to-end encryption is enabled on both ends. Or, in the case of apps whose encryption protocols have not been fully vetted, whether it works as advertised to begin with.
For mainstream services, crypto is a nice add-on to give users the idea that they can feel more secure, but thats completely different than when your [customers] are people who are under threat, says Bjoern Rupp, the CEO of the boutique German secure communication firm CryptoPhone. If you have to fear for your life, not all secure communication systems are designed for that.
Encryption die-hards can host their own system using open standards like OSTN, similar to how you might host your own email server. Though it takes some technical knowhow, its an option that gives users real control and that isnt possible with closed systems. Another option is to use a security first service like CryptoPhone that offers an integrated, one-stop solution.
CryptoPhones can only call other CryptoPhones, but the company made that choice so it could control the security and experience of both hardware and software. To reconcile this closed system with transparency, the company is open source and invites independent review. It also has over a decade of experience. CryptoPhone has been making high-end commercial products for secure voice calling for a long time, the Guardian Projects Freitas says. They had these crypto flip phones, which were awesome.
None of which leaves the average consumer with widespread encrypted calling that works across multiple services. There may be some help on the way, though, in the form of a new, open, decentralized communication standard called Matrix that includes end to end encryption for chat, VoIP calling, and more. Matrix could be a clean, easy to implement standard underlying other software. For instance, if Slack and Google Hangouts both used the Matrix standard, you would be able to Slack someone from Hangouts and vice versa, similar to how you can send emails to anyone using their email address, regardless of what provider they use.
The net owes its existence to open interoperability, says Matthew Hodgson, technical lead of Matrix. Then people build silos to capture value, which is fair enough, but you get to a saturation point where the silos start really stifling innovation and progress through monopolism.
The catch, of course, is getting buy-in from companies that have little incentive, or getting new services built on a standard like Matrix to take off. Walled gardens tend to produce more profit than open ones.
Still, having these new options is an important first step. And combined with the broader proliferation of encrypted voice-calling apps, change finally seems to be coming from a lot of directions at once. I think theres a longer-term project going on called the internet, Freitas says. Some of us still believe in it.
Originally posted here:
Encrypted Chat Took Over. Let's Encrypt Calls, Too - WIRED
Gains from encryption continue to outweigh the pain – AMEinfo
The benefits brought forth by digitisation surround us and have a positive impact on virtually every aspect of our modern lives. This progress is only set to expand further as connectivity proliferates and smart cities and Internet of Things environments abound.
This progress, however, comes at a cost, which is that increasingly interconnected, intelligent, and instrumented eco-systems are more open to cyber and other threats.
In much the same way as we believe the gains from digitisation far outweigh the negative consequences of a widening cyber threat surface, we also believe resilient encryptions serve a greater positive role in society than they do a negative or potentially menacing one.
There are by far more progressive things being protected by strong encryption than there are foreboding activities being perpetuated behind the protection offered by encrypted communications.
We advise the establishment of a good implementation of End-2-End Encryption (E2E), which means that nobody in between whether its the device manufacturer, the Internet Service Provider, the telecom companies nor any eavesdropper should be able to decrypt the data.
Such an encryption technique could be further improved with the use of Perfect and Future Forward Secrecy, where the encryption keys and the exchange keys are used only once, then destroyed forensically and never used again, and in which future keys cannot decrypt past messages.
In addition to encryption, we advise enterprises and governments to look at all the end points that might affect data in transit and at rest. It is just as critical to know who and what touches the data in the internal network, the storage network or cloud, as it is to secure the data in transit.
(By Leo Cole, Vice President of Marketing at DarkMatter. He may be contacted on Twitter @coleleoj)
Read the original post:
Gains from encryption continue to outweigh the pain - AMEinfo
Enterprises have accelerated adoption of encryption strategies – MIS Asia
Anuradha Shukla | April 24, 2017
Escalating threats accelerate encryption deployments: Thales Global Encryption Study
Enterprises have accelerated adoption of encryption strategies, according to the 2017 Global Encryption Trends Study.
The report, based on independent research by the Ponemon Institute and sponsored by Thales, indicates that 41 percent of organisations have an encryption strategy applied consistently across the enterprise.
Organizations continue to show a preference for control over encryption and key management when those activities migrate to the cloud, business unit leaders now enjoy a higher influence over encryption strategy than IT operations.
The accelerated growth of encryption strategies in business underscores the proliferation of mega breaches and cyberattacks, as well as the need to protect a broadening range of sensitive data types, said Dr Larry Ponemon, chairman and founder of The Ponemon Institute.
He stressed the report found that the stakes were too high for organisations to stand by and wait for an attack to happen to them before introducing a sophisticated data protection strategy. Encryption and key management continue to play critical roles in these strategies.
Of the report highlights, 67 percent of respondents indicated they performed encryption on premise prior to sending data to the cloud, or encrypt in the cloud using keys they generate and manage on premises.
Reflecting wide adoption of cloud computing, 37 percent said their organisations turn over complete control of keys and encryption processes to cloud providers. And as many as 31 percent are currently using or planning to use Hardware Security Modules (HSMs) with Bring Your Own Key (BYOK) deployments.
Overall, usage of HSMs with Cloud Access Security Brokers (CASBs) is expected to double in the next 12 months (from 12 percent to 24 percent).
This years findings align with key trends demonstrating an increased reliance on the cloud, ever-evolving internal and external threats, and new data sources mandating stronger protection, said John Grimm, senior director of security strategy at Thales e-Security.
1
See the rest here:
Enterprises have accelerated adoption of encryption strategies - MIS Asia
Centre working to reintroduce draft encryption policy – The Sunday Guardian
In order to access all encrypted information shared on popular chatting and messaging applications, including WhatsApp, Viber, Line and Google Chat, the Union government is all set to re-introduce the Draft National Encryption Policy, sources have confirmed. According to sources, the government is working on the draft for the National Encryption Policy (NEP) and it may soon publish the draft for public feedback.
Following a public uproar over threat to privacy, last year, the government had called off the Draft National Encryption Policy 2016 which had made storage of all messages mandatory, including social media messages, for 90 days.
According to sources, Telecom Minister Ravi Shankar Prasad had asked the Department of Electronics and Information Technologyrecently made into a separate ministryto re-work a fresh draft to regulate the countrys encryption policy.
Cyber law expert Pawan Duggal said, The initial draft policy on encryption introduced by the government was draconian and it would have put more burdens on individuals, while service providers, most of whom are based outside India, would have remained out of the policy net.
According to Duggal, as a sovereign country, India has all rights to protect its security and given the cyber threats in the country, it is necessary for the government to have a lawful surveillance system in place.
WhatsApp, in its blog, has said that even the company is unable to decrypt its end-to-end encryption due its intrinsic technology protection. However, many experts have rubbished the claim made by WhatsApp.
Duggal said, WhatsApp or any other social media platform owners cannot simply get away, saying that it has no decryption key to its end-to-end encryption technology. WhatsApp and other products of the true encryption sort could indeed be compelled by Indian law to behave like mobile phone services, and forced to re-implement their software, relapse it to make lawful interception possible on demand. Neha Sharma, another Delhi-based cyber law expert who teaches cyber law at the Centre of Law, Rajasthan University, said: Many services we think of as encrypted are subject to whats called lawful interception, which is supposed to mean that with the right sort of authorisation from the judiciary, supposedly confidential data that was sent or stored using the service can be recovered.
Lawful interception may lead to traffic being monitored in real time, or (given the sheer volume of data involved these days) recovered and decrypted later to help an investigation or prosecution. For example, your online banking transactions are typically encrypted end-to-end as you conduct them, but the bank needs to keep a permanent record of what you did for its own rather obvious commercial reasons, as well as for regulatory purposes, Neha told The Sunday Guardian. Under the existing regulatory framework, 256-bit encryption is unlawful and prohibited because the retraction made by the government on bulk encryption and a cap of key lengths at 40 bits. However, several experts dont agree with such an argument and say that 40 bits key cap obligations currently only apply to licence holders themselves (such as ISPs and TSPs) and not to internet.
Continued here:
Centre working to reintroduce draft encryption policy - The Sunday Guardian
Businesses increasing encryption efforts | ITProPortal – ITProPortal
Businesses are increasingly adopting encryption strategies, according to a new report by Thales. More than four in ten (41 per cent) of respondents in the report said their organisation has an encryption strategy that is applied consistently, across the enterprise.
Whats also interesting as that for the first time since Thales started making these reports (12 years), business unit leaders have more influence on these things than IT operations.
Looking at the figures, the report states that two thirds (67 per cent) use one of two routes: They either perform on-premise encryption, or send the data into the cloud, where its encrypted using on-premise generated keys.
Almost four in ten (37 per cent) said their businesses turn over complete control of keys and encryption processes to cloud providers.
The accelerated growth of encryption strategies in business underscores the proliferation of mega breaches and cyberattacks, as well as the need to protect a broadening range of sensitive data types, commented Dr Larry Ponemon, chairman and founder of The Ponemon Institute.
Simply put, the stakes are too high for organizations to stand by and wait for an attack to happen to them before introducing a sophisticated data protection strategy. Encryption and key management continue to play critical roles in these strategies.
Its also interesting to learn that a third (31 per cent) are either using, or plan on using HSMs (Hardware Security Modules), together with the BYOK deployments (Bring Your Own Key). A fifth (20 per cent) said the same for CASB (Cloud Access Security Broker) deployments. Both HSM and CASB usage is expected to double in the next year, up from 12 to 24 per cent.
Image Credit: Sergey Nivens / Shutterstock
More:
Businesses increasing encryption efforts | ITProPortal - ITProPortal
Businesses Take a Strategic Turn Toward Encryption – Security Intelligence (blog)
Today, more organizations are taking a strategic stance to encryption, and they are deploying a range of technologies and techniques to combat external threats.
Businesses have responded to the increased use of the cloud with a commensurate adoption of encryption, the Ponemon Institute and Thales outlined in the 2017 Global Encryption Trends Study. As many as 41 percent of respondents believed their organization had a strategy that was applied consistently across the enterprise.
The research highlighted how the growing use of on-demand systems and services means line-of-businesses executives are taking a comprehensive approach to data security. Additionally, they are, in many cases, helping to dictate how information is used and protected.
Businesses are aware of both the potential risk of cyberattacks and of the requirement to protect sensitive data, said Larry Ponemon, chairman and founder of the Ponemon Institute, in the reports press release. He added that smart executives understand they must replace reactive approaches with a sophisticated data protection strategy. Business leaders have a higher influence over this aspect of a security strategy than IT operations for the first time in the studys 12-year history.
Infosecurity Magazine noted compliance is the top driver for encryption, according to 55 percent of respondents. It was followed closely by protecting enterprise intellectual property (51 percent), customer information protection (49 percent) and protection from external threats (49 percent).
About two-thirds (67 percent) of respondents take one of two routes to securing data at rest in the cloud: They either encrypt data on-premises prior to transmitting it to the cloud, or they encrypt it on-demand using keys they generate and manage on their own site.
But 31 percent of firms are using or plan to use hardware security modules (HSMs) with bring-your-own-key deployments. As many as 38 percent of firms now use HSMs, which represents a new industry high. Almost half of those businesses own and operate HSMs on-site to support cloud-based apps.
More than two-thirds (37 percent) said their organizations turn over complete control of keys and encryption processes to cloud providers. Another 20 percent are using or plan to deploy cloud access security brokers (CASBs). Overall use of HSMs with CASBs is expected to double during the next year from 12 percent to 24 percent, Infosecurity Magazine reported.
Organizations are adopting encryption at a rapid and increasingly urgent pace. The move is largely because the technology helps enterprises support dynamic industry regulations while also protecting sensitive data in the cloud.
Yet the shift towards stronger data security should not be taken for granted. Thales and 451 Research stated 93 percent of firms will use sensitive data in an advanced technology environment, such as the cloud, this year. However, 63 percent also believed they were deploying these technologies without appropriate data security systems in place.
Business and security leaders should ensure their on-demand IT approach is matched with a strong security strategy. The deployment of service-based security tool sets, the classification of sensitive data within the cloud, and the use of information security across all advanced technology platforms are potential solutions for securing enterprise data.
Read the rest here:
Businesses Take a Strategic Turn Toward Encryption - Security Intelligence (blog)