Most security initiatives are defense strategies - aimed at protecting the perimeter of the network. But these efforts may ignore a crucial vulnerability - sensitive data stored on networked severs are at risk from attackers who only need to find one way inside the network to access this confidential information. Additionally, perimeter defenses like firewalls cannot protect stored sensitive data from the internal threat - employees with the means to access and exploit this data. Encryption can provide strong security for data at rest, but developing a database encryption strategy must take many factors in consideration. Where should the encryption be performed, for example - in the database, or in the application where the data originates? Who should have access to the encryption keys? How much data must be encrypted to provide security? What's an acceptable trade-off between data and security and application performance? This paper examines the issues of implementing database encryption and makes recommendations that will help your company develop a strategy that will meet your individual needs.
Did you find this white paper useful?
27 out of 50 users found this white paper useful
Related white papers
XML Web Services Vulnerabilities and Countermeasures
A 30 minute recorded Webcast by Bret Hartman, VP of Technology Solutions at DataPower, addresses key XML-based security vulnerabilities when deploying Web services and how to avoid them. Mr....
IBM Healthcare Security Executive Kit
Healthcare organizations must protect an expanding amount of patient information from internal and external threats, while ensuring 24x7 availability and secure, immediate access to critical patient data by authorized users....
Zim Integrated Shipping Services Delivers Secure SSL VPN as Easy as Connecting the Dots
Zim Integrated Shipping Services Ltd. is one of the largest container-shipping companies in the world. Zim faces the daunting task of maintaining information security while providing high-performance network access. With...
Remote Deposit Capture: A win for banks, credit unions and businesses.
The days of last-minute runs to the bank are coming to an end, thanks to Remote Deposit Capture (RDC). In this ForwardView webshow, IBM shows how this powerful new tool...
Remote Deposit Capture: A win for banks, credit unions and businesses.
The days of last-minute runs to the bank are coming to an end, thanks to Remote Deposit Capture (RDC). In this ForwardView webshow, IBM shows how this powerful new tool...
Why You Need Email Encryption: Use Case Scenarios
"Identity theft is a top concern for consumers right now, so we can't let their credit card information get into the wrong hands. Proofpoint is extremely accurate at detecting any...
Live Webcast: Top Trends Impacting Two-Factor Authentication
2008 brings with it new IT security challenges and issues that network and systems administrators should be aware of. Utilizing a 2008 survey of IT professionals from leading enterprises,...
