Encryption is an exception to the rule that computer security is hard, as security guru Bruce Schneier has noted in this Wired opinion piece. Why is computer security hard? Because an attacker "only has to find one network flaw, while the defender has to find and fix every flaw." The odds favor the attackers, especially when you consider that the number of flaws are quite numerous and often unknown to those looking to provide security. With encryption software like AlertBoot, though, the odds favor the defender. That's why so many companies look to encryption software to secure their data from information security breaches; however, not all encryption software is designed the same. Complaints regarding encryption software are myriad, but the most pernicious among them is perfectly good encryption systems that are hard--perhaps nearly impossible--to deploy. Furthermore, if a solution is deployed, companies may find that the "maintenance aspect" is terrible: keeping encryption keys in order; finding which computers were not encrypted due to hardware incompatibilities; updating future policy changes; etc. Thankfully, some encryption packages are better designed than others. AlertBoot, launching globally today, not only simplifies the process of enterprise-wide encryption, but also shores up many of the criticisms aimed at encryption software.
Encryption is an exception to the rule that computer security is hard, as security guru Bruce Schneier has noted in this Wired opinion piece. Why is computer security hard? Because an attacker "only has to find one network flaw, while the defender has to find and fix every flaw."
The odds favor the attackers, especially when you consider that the number of flaws are quite numerous and often unknown to those looking to provide security. With encryption software like AlertBoot, though, the odds favor the defender. That's why so many companies look to encryption software to secure their data from information security breaches; however, not all encryption software is designed the same.
Complaints regarding encryption software are myriad, but the most pernicious among them is perfectly good encryption systems that are hard--perhaps nearly impossible--to deploy. Furthermore, if a solution is deployed, companies may find that the "maintenance aspect" is terrible: keeping encryption keys in order; finding which computers were not encrypted due to hardware incompatibilities; updating future policy changes; etc.
Thankfully, some encryption packages are better designed than others. AlertBoot, launching globally today, not only simplifies the process of enterprise-wide encryption, but also shores up many of the criticisms aimed at encryption software.
AlertBoot excels at encryption deployment, key management, and effective policy updates while lowering the total cost to the enterprise. This is possible because AlertBoot is centrally managed. Central management means that encryption keys are not generated and stored separately; instead, in AlertBoot, each encryption key is generated as the computer is registered. Contrast this to encryption software where the person doing the installation has to record in a separate application, such as a spreadsheet, which key belongs to which computer, potentially creating erroneous listings by mistake. AlertBoot is not only centrally managed but in the "cloud." In other words, it uses the internet to distribute and install encryption. Such a design saves IT admins a lot of time and energy in securing an important part of their corporate network. Needless to say, the same design also allows easy and complete policy updates. This cloud-based service also means good news in the financial front. First off, the IT department doesn't have to make any hardware purchases, meaning a sizable initial outlay is not necessary, nor is the subsequent maintenance of said hardware. Second, the IT department doesn't have to deal with the vagaries of software licensing. Contractually, encryption licenses may require one to sign up with 20, 50, or 100 licenses. If you have to protect 101 computers, it means a certain number of licenses will go to waste. AlertBoot eliminates such inefficiencies by providing encryption "on-demand." Third, it means minimal IT department involvement. Besides setting up the encryption rules and other policies, the IT department doesn't have to get as deeply involved. The actual process of encrypting computer lies with the endusers, and the process is so simple that regular non-IT people can do it. Indeed, there is very little difference--from the endusers' perspective--between encrypting their computers with AlertBoot and creating a blogging account with Blogger or Wordpress. Last but not least, the centrally managed aspect of AlertBoot means accurate, up-to-date reports, also generated and viewable on-line. The value of such reports cannot be overemphasized. How can you tell whether a particular group of computers have been encrypted? How do you know which ones need a follow up? Short of checking on each computer by sitting in front of each one, running an audit report is the only way. A more pragmatic reason for needing such reporting lies with compliance, legal and otherwise. For example, data breach notification laws require a quick response. Was a lost computer protected with encryption software? With AlertBoot, it's very easy to find out. Does a potential business partner require your company to secure information? Provide proof on the spot, assuming you've got an internet connection.
AlertBoot excels at encryption deployment, key management, and effective policy updates while lowering the total cost to the enterprise. This is possible because AlertBoot is centrally managed.
Central management means that encryption keys are not generated and stored separately; instead, in AlertBoot, each encryption key is generated as the computer is registered. Contrast this to encryption software where the person doing the installation has to record in a separate application, such as a spreadsheet, which key belongs to which computer, potentially creating erroneous listings by mistake.
AlertBoot is not only centrally managed but in the "cloud." In other words, it uses the internet to distribute and install encryption. Such a design saves IT admins a lot of time and energy in securing an important part of their corporate network. Needless to say, the same design also allows easy and complete policy updates.
This cloud-based service also means good news in the financial front. First off, the IT department doesn't have to make any hardware purchases, meaning a sizable initial outlay is not necessary, nor is the subsequent maintenance of said hardware.
Second, the IT department doesn't have to deal with the vagaries of software licensing. Contractually, encryption licenses may require one to sign up with 20, 50, or 100 licenses. If you have to protect 101 computers, it means a certain number of licenses will go to waste. AlertBoot eliminates such inefficiencies by providing encryption "on-demand."
Third, it means minimal IT department involvement. Besides setting up the encryption rules and other policies, the IT department doesn't have to get as deeply involved. The actual process of encrypting computer lies with the endusers, and the process is so simple that regular non-IT people can do it. Indeed, there is very little difference--from the endusers' perspective--between encrypting their computers with AlertBoot and creating a blogging account with Blogger or Wordpress.
Last but not least, the centrally managed aspect of AlertBoot means accurate, up-to-date reports, also generated and viewable on-line. The value of such reports cannot be overemphasized. How can you tell whether a particular group of computers have been encrypted? How do you know which ones need a follow up? Short of checking on each computer by sitting in front of each one, running an audit report is the only way.
A more pragmatic reason for needing such reporting lies with compliance, legal and otherwise. For example, data breach notification laws require a quick response. Was a lost computer protected with encryption software? With AlertBoot, it's very easy to find out. Does a potential business partner require your company to secure information? Provide proof on the spot, assuming you've got an internet connection.
When you consider that not all encryption software is created equally, you'll need to weigh the pros and cons of a particular software suite before deciding to employ it. Here are some aspects, some already mentioned above, you should check up on before deciding on using a particular encryption product: - Hard Disk and File Encryption: Complementary, Not Competing, Technologies- Key Management- Rate Limiting and Password Recovery- Auditing & Reporting: Following Up To Make Sure- FIPS 140-2 Validated While the above is not a comprehensive list, it's a good starting point in figuring out what you might need in an encryption package. I'll be covering these in separate blog posts in the next couple of weeks.
When you consider that not all encryption software is created equally, you'll need to weigh the pros and cons of a particular software suite before deciding to employ it. Here are some aspects, some already mentioned above, you should check up on before deciding on using a particular encryption product:
- Hard Disk and File Encryption: Complementary, Not Competing, Technologies- Key Management- Rate Limiting and Password Recovery- Auditing & Reporting: Following Up To Make Sure- FIPS 140-2 Validated
While the above is not a comprehensive list, it's a good starting point in figuring out what you might need in an encryption package. I'll be covering these in separate blog posts in the next couple of weeks.