Why is encrypting data in transit not enough?

Home
Topics
Data Protection
Secure data storage
Why is encrypting data in transit not enough?

Why is encrypting data in transit not enough?

Well, that's simple. It's because data is at rest most of the time. There's a general misnomer and false sense of security created by SSL and VPN. The general public and management have a general misperception about all of this that they need to encrypt everything in transit and they'll be fine.

I see Web sites all the time that say that claim to be secure because they are using SSL. This is such a weak claim, and it's also irresponsible. Having said that, I do think that SSL and other methods for encrypting data in transit do serve a couple of good purposes. The first one is to protect wireless network communication. And the second, is to prevent someone from using a network analyzer (sniffer) to capture traffic off a local network.

But, the chances of someone exploiting data in transit is so much lower than someone gaining access, and having extended access to, to data at rest on local drives or in the storage network.

Check out the entire Storage Encryption FAQ guide.

Requires Free Membership to View

Login

When you register for SearchStorage.com, you’ll also receive targeted emails from my team of award-winning editorial writers. Our goal is to keep you informed on the hottest topics, the latest news and the biggest challenges you face as a storage professional today.

Rich Castagna, Editorial Director

By submitting your registration information to SearchStorage.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchStorage.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

Dig Deeper

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary

Show me more

This was first published in October 2007

More from Related TechTarget Sites

Solid State Storage
Virtual Storage
Cloud Storage
Disaster Recovery
Data Backup
Storage UK
Storage Channel

searchSolidStateStorage
- Understanding data movement in Tier 0 storage
  
  Knowing how SSD tiering software works will help storage managers match data access characteristics of applications.
- EMC sees bright future for hybrid SSD, cloud models
  
  When it comes to flash technology and storage clouds, EMC is counting on hybrid SSD and public-private cloud models to shine.
- Pure Storage unveils FlashArray upgrade, customers
  
  Solid-state storage startup Pure Storage goes GA with its FlashArrays, upgrades software and reveals customers in its limited access program.
Virtual Storage
- Vblock architecture gains new configuration; VCE integrates EMC data protection apps
  
  At EMC World 2012 in Las Vegas, VCE announces a new Vblock architecture package, the Series 700 Model LX, as well as integration with EMC’s Avamar, Data Domain and RecoverPoint products.
- vSphere file systems: VMFS 5 plus VMFS vs. NFS
  
  Learn what makes VMFS unique among file systems, what VMFS 5 brings to the table and how to configure it. Plus, get info on VMFS vs. NFS.
- Atlantis Computing unveils Atlantis ILIO Diskless VDI 3.2; more news
  
  In virtual storage news, Atlantis launches ILIO Diskless VDI 3.2, and Tiger Technology releases storage clustering software cluStore.
CloudStorage
- Syncplicity customers hope for enterprise cloud file sharing features from EMC
  
  Syncplicity customers say they welcome EMC’s acquisition of the online file sharing vendor, although they’re watching EMC’s pricing plans.
- Public cloud architecture, TwinStrata help one company avoid upgrade
  
  TwinStrata’s CloudArray public cloud architecture helped the Russell Lands development company avoid an expensive storage upgrade.
- Creating a private cloud environment offers cost savings, scalability
  
  Creating a private cloud can bring cost savings, scalability and self-service, but the transformation may involve moving to object storage.
searchDisasterRecovery
- Financial firm replicates way to lower recovery time objective
  
  Financial services firm overhauls data protection to meet recover time objectives and recovery point objectives.
- Recovery planning inches forward, according to recent DR research
  
  This tip examines several examples of DR research from independent sources and DR vendors.
- Leverage government cybersecurity programs
  
  This tip examines some key government cybersecurity initiatives and their relevance to the private sector.
searchDataBackup
- EMC Data Domain backup – addition by subtraction?
  
  EMC rolls out bigger, faster Data Domain system, discontinues separate global dedupe and archiving products, and adds tape support for Avamar.
- SAN backup and recovery
  
  Moving data can complicate your backup efforts. In this tip, you’ll learn backup goals for SAN environments and backup methods to achieve those goals.
- Execs talk Backup Exec 2012, integrated appliances at Symantec Vision
  
  Our senior news director Dave Raffo attended Symantec Vision last week, and we have compiled his reporting for your convenience.
searchStorageUK
- Syncplicity customers hope for enterprise cloud file sharing features from EMC
  
  Syncplicity customers say they welcome EMC’s acquisition of the online file sharing vendor, although they’re watching EMC’s pricing plans.
- Vblock architecture gains new configuration; VCE integrates EMC data protection apps
  
  At EMC World 2012 in Las Vegas, VCE announces a new Vblock architecture package, the Series 700 Model LX, as well as integration with EMC’s Avamar, Data Domain and RecoverPoint products.
- Public cloud architecture, TwinStrata help one company avoid upgrade
  
  TwinStrata’s CloudArray public cloud architecture helped the Russell Lands development company avoid an expensive storage upgrade.
searchStorageChannel
- Selling customers on enterprise cloud backup services benefits
  
  To sell enterprise cloud backup services, storage VARs and MSPs need to focus on the business benefits -- mainly, risk mitigation and cost reduction -- rather than the technology itself.
- Distributor Condre offers Caringo object storage software; more news
  
  In our channel news roundup, object storage provider Caringo partners with distributor Condre for object storage, Active Archive Alliance launches a VAR certification program, and more news.
- Financial firm replicates way to lower recovery time objective
  
  Headlines: Financial services firm overhauls data protection to meet recovery time objectives and recovery point objectives.

All Rights Reserved, Copyright 2000 - 2012, TechTarget