Encrypted Backups Still Not All That Common
from the data-is-as-data-does dept
When all those data leaks of backup systems happened earlier this year, one of the questions asked was why were so few of those backups encrypted? That resulted in a spirited debate, where people discussed the pros and cons of encryption, and pointed out the even more important point: if the backups are secured physically, then you shouldn’t need encryption. In other words, this isn’t even a question if companies properly secured their backups. Still, it’s pretty clear that plenty of important data isn’t secured physically and isn’t encrypted — and all those data leaks haven’t changed very much. A new study shows that there’s been virtually no change in the percentage of companies that encrypt their backups, even if plenty say they plan on doing so at some point in the future.
Comments on “Encrypted Backups Still Not All That Common”
It's really not a public debate
Data backups really aren’t a matter of public debate, it’s really a technique decision by the supernumeral tech for the for the organization. In the realm of customer data, the problem of sensitive/personal data being unencrypted is merely a symptom of the root issue, which is that we as a culture have readily parted with our government issued serialization because we were told “that’s the way it is”. It’s a cultural issue, not a technique issue. There’s really no good reason to give your SSN and DOB to anyone, for any reason, but sadly we do it anyway so we can have our credit cards, our cable tv, our cellular phones, our homes, our cars, etc.
How secure is a password that never changes?
No Subject Given
Physical Security. Well thats just like a lock on a door, all that does is keep and honest man honest. How much is the company’s data worth? Thats what these company’s should be asking themselves. If we loose this information how much is it going to cost us.
Encryption
Companies don’t encrypt their tapes because it costs a lot of resources to encrypt. If it is done on the client machine, the CPU goes to 100% and stays there for the duration of the backup. If it is done on the server, there may not be a long enough window to run the encryption. If it is done on an outboard device, like Decru or others, the device costs money. A typical installation will have one encryption appliance per tape drive (or two or three, depending on throughput). If the company has 20 tape drives, that’s an investment of $1m or more. Plus they need appliances at the disaster recovery center to decrypt the data. It gets expensive, and that moves it off the radar of IT managers.