Top ten tips for protecting data in 2006

contents

technologies

Top ten tips for protecting data in 2006

NetLib, a leading innovator of data encryption security software for the enterprise and developers, in light of the recent security issues, suggests the top ten ways companies can protect their business critical data using a simplified approach. According to a recent survey, data security and protection is the top IT spending priority for 2006. As more government policies are passed and companies search for answers to protecting their customer's data, NetLib, a Microsoft Certified Partner, provides expert insight into the problems facing businesses across the globe.

Top 10 Tips for Data Protection

1) Limit the number of users authorized to access the database. This would seem obvious to most but it is often overlooked.

2) To that end, prevent physical access to the machine by unauthorized people. It is virtually impossible to maintain security if there is unlimited physical access to a machine.

3) Most hackers are not Einsteins. They are looking for the lowest hanging fruit. Leaving databases or backups encrypted is inviting anyone in.

4) When given the choice, choose pass phrases to encrypt data rather than passwords. Pass phrases are expressions or combinations of words that are easy for you to remember but difficult for other people to guess. Preferably things in your everyday life should jog your memory. For example, if you pass four traffic lights on the way to work, your passphrase could be pass4lights. A lot easier to remember than GB1764T, and a lot more effective than your kid's birthday.

5) Keep keys separated from data. At a minimum, keys should be stored in a different file but preferably on a different drive, server, or device(e.g., USB jump drive).

6) When encrypting columns in a table, make sure the same plaintext values encrypt to different ciphertext values. This is especially important for short columns such as passwords, salaries and expiration dates.

7) Understand your critical business needs - Whole database vs. Column encryption. Are you protecting specific data (e.g., credit card numbers, test scores) from the outside world? Or are you protecting your intellectual property (e.g., schema and proprietary data) from your customer? Contrary to what you have read, whole database
encryption is not slower on a properly sized machine.

8) Make sure that critical data on backups, desktops, and laptops is encrypted, not just the data on servers. Remember that sometimes the person you need to restrict is the backup operator, or the desktop or laptop user! So built-in Windows protection is not always the answer.

9) There is no perfect security. Don't let the apparent complexity of the problem prevent you from taking simple steps. Sometimes several levels of tools that are easy to deploy and maintain are a lot more effective than a single super-tool that is designed to solve everything. Sometimes the super tool is so complex that it is never deployed effectively, or encourages users to figure out ways around it.

10) Defend, don't just restrict. For years NetLib has been pointing out that most organizations spend all their energy on restricting unauthorized access to data, while leaving data completely unencrypted once unauthorized access does occur.

NetLib recently launched Encryptionizer(R) for SQL Server Column Encryption Manager (Col-E). Col-E(R) is an add-on to their already highly rated Encryptionizer product line. It eases and advances the state of the art of enhanced security for protecting business critical data. The ultimate goal is deliver a simplified approach, providing real value and superior customer support and service.

Encryptionizer for SQL Server offers a point-and-click user interface to encrypt columns quickly and easily. Col-E introduces an industry-unique feature - Repeating Values Protection(TM) (RVP). Deployment can be accomplished in as little as a few hours and offers the ability to add an additional layer of security separate from Windows and SQL security. It can be deployed without programming and without adding any administrative overhead.

NetLib's industry expertise and innovative products enable a unique approach to the protection of data and intellectual property at an affordable price with minimal time and effort to deploy and administer, resulting in enterprise class security for companies and developers alike.

"The importance of data protection - whether it is that of your company's or your customers - can no longer be ignored, " said Elisabeth Stonehill, vice president of product development and sales for NetLib. "NetLib has proven that the process doesn't have to be expensive, and, quite frankly, it's just not that hard. As a trusted business partner to all of our customers for the past 20 years we can tell you that a simplified approach is the best first step towards data protection. And if you don't believe us just ask our customers."

NetLib is the only vendor in this space to offer both whole database and column encryption, the most comprehensive and flexible approach to meeting demanding security requirements. NetLib's flagship product, Encryptionizer, is a highly scalable and easy to deploy solution to meet business security requirements.

write your comments about the article :: © 2006 Networking News :: home page