On-Demand Encryption

The Challenge

Shielding data has become increasingly essential for organizations, as new laws are imposed for consumer privacy. These laws placed companies liable for their customers’ information. Companies will need to secure their customers’ personal information so as to avoid lawsuits and public embarrassment.

The lack of a unified solution leaves large gaps in securing data and open critical risks. As a result, companies are wasting money on these technologies and divulging themselves to unjustified complexity and risk:

Split policy definition, which raises gaps in risk exposure
Inconsistent and temporary control as data moves from local drives to portable media and through email, applications, systems and storage Organizations seeking a unified solution have traditionally been mandated to go through multifaceted and costly integration efforts.

The Solution

On-Demand Encryption assists to keep data from unauthorized access from both internal users and external attackers. On the other hand, without enough knowledge of data encryption techniques utilized, there may be a false sense of security unless implemented correctly. Through accurate use of data encryption, the protection against unauthorized intrusion can be very powerful.

Strong encryption offers the sure way to protect an organization’s critical information from falling into the wrong hands. It also provides a “safe harbor” from leak requirements in the event a machine containing legally protected data is lost or stolen.

Below are the encryption techniques:

Manual File Encryption
Manual File Encryption allows a user to selectively encrypt a file in order to protect it from being read by others. File encryption can be developed without deep intervention with operating systems, in order to allow vendors to offer cross-platform software running on all Windows variants, OS/2, Apple MAC, and UNIX systems.

Folder Encryption
Folder Encryption allows a user to create folders wherein all files are automatically encrypted. As opposed to manual file encryption method, the encryption is done on the fly, not when Windows starts or shuts down.

Folder Encryption is more transparent and elegant than File Encryption; however both are file-based.

Folder Encryption intercepts file access, thus requiring a much deeper intervention into the operating system; it is not offered on as many platforms.

Disk Encryption
Disk encryption encrypts all data on the disk, including Windows boot and system files.

file_encryption

Figure 1: File Encryption

The Benefit On Demand encryption does not just protect files and folders; it protects all data stored on the hard drive - including the operating system itself. Thus, it is the most wide-ranging and cost-effective method for preventing data leakages and attaining regulatory compliance. The value of using encryption to manage the security, financial and legal risks associated with electronic data is of high importance.

By deploying On-Demand Encryption solution, organizations can:

Avoid information loss due to theft or accidental loss of laptops and desktop PCs by guaranteeing all data are encrypted
Declare that intellectual property and sensitive data is accessible only to authorized users
Securely share out confidential and private information through email, FTP post, network drive or other mechanism with self-extracting encrypted file archives
Allow users to securely take data home, work on the encrypted files, and re-encrypt the data on the removable media device
Meet regulatory compliance requirements through strong, centrally managed encryption, including FIPS 140-2 certified and AES 128 bit/256 bit encryption