| Publisher | RSA Security | ||
|---|---|---|---|
| Format | PDF, requires Acrobat Rdr 5 | Date added | 01 Jan 2002 |
| Topics | SSL - TLS, Firewalls, Security Standards, Best Practices, PKI, File and Network Servers, Security Management, Network Security, Anti-Hacking, Security Applications | ||
| Downloads | 500 | ||
Most security initiatives are defense strategies - aimed at protecting the perimeter of the network. But these efforts may ignore a crucial vulnerability - sensitive data stored on networked severs are at risk from attackers who only need to find one way inside the network to access this confidential information. Additionally, perimeter defenses like firewalls cannot protect stored sensitive data from the internal threat - employees with the means to access and exploit this data. Encryption can provide strong security for data at rest, but developing a database encryption strategy must take many factors in consideration. Where should the encryption be performed, for example - in the database, or in the application where the data originates? Who should have access to the encryption keys? How much data must be encrypted to provide security? What's an acceptable trade-off between data and security and application performance? This paper examines the issues of implementing database encryption and makes recommendations that will help your company develop a strategy that will meet your individual needs.
Related white papers
Maximising site vistors trust using extended validation SSL
Web business faces a crisis in confidence. Trust in site security is decling, resulting in consumers scaling back on web transactions or just opting out altogether. This white paper address...
Reaching the Tipping Point for Two-Factor Authentication
Two-factor authentication is becoming more common in the world's largest companies. Smaller companies are also looking at it - and asking questions: What's its appeal? Is there a solid return on...
Security Firm Helps Customers Create Highly Secure Hosted Infrastructure Solutions
VeriSign wanted to provide customers who deliver services on hosted infrastructures with the same highly secure encryption technology used in on-premises data centers. The company partnered with Microsoft to provide...
Configuring the Relay Server With Apache Using SSL
Secure data transmission and data availability are integral components of corporate information systems in today's wireless and occasionally connected environments. The need for data security is at an all time...
ActiveSync Configuration for WatchGuard SSL 100
With ActiveSync, users get push functionality to keep email, calendar, tasks, and contacts up to date on a mobile device. It is possible to securely run ActiveSync over SSL through...
Smart Enterprise Single Sign-on
What is needed is an Enterprise Single Sign-On (E-SSO) solution that allows end-users to securely authenticate once and then access their desktop and their enterprise applications. And that is able...
SonicWALL Case Study: Total Transit, Inc.
Founded in 1984, Total Transit, Inc. is the Phoenix's largest taxi service, operating over 500 vehicles with its division of Discount Cab. The challenge was to ease teleworker access to...



