Data Privacy on Fire We’re still seeing data breach headlines burning across news outlets and social media, fast and hot:The Equifax Breach was Entirely Preventable – Wired States Investigate Experian Data Breach – Krebs on Security ‘Heartbleed’ Bug in OpenSSL Exposes Millions of Online Passwords – Reuters Millions of Target Customers’ Credit, Debit Card Accounts May Be Hit by Data Breach – NBC News Neiman Marcus Data Breach Worse Than First Said – New York Times Retailers Hit by Credit-Data Breach Smaller Than Target’s – Bloomberg News
And the fire burns on.
According to Trent Henry of the Burton Group,
Data protection needs to take into account both internal and external threats, including those against critical database and application resources.
Encryption key management is one of the most important “basics” for an organization dealing with security and privacy protection. Major data losses and regulatory compliance requirements have prompted a dramatic increase in the use of encryption within corporate data centers.
It is a common mistake to refer to data masking and data encryption interchangeably to mean the same things. While field-level encryption is considered one of many possible “data masking” functions, we define data masking and encryption as technically distinct processes below.