Storage encryption essentials

Here are some tips to help you begin a storage encryption project in your organization.

There a few things you need to think about before you get started with storage encryption. First, determine your current data storage weaknesses -- you can't protect what you don't acknowledge. Storage vulnerabilities can only be determined by using good security tools and a trained eye. Keep in mind ...

BROWSE BY TAG Secure data storage,   Data Protection,   Data storage management,   VIEW ALL TAGS

RELATED CONTENT Secure data storage EMC adds replication support to Data Protection Advisor Avoid data migration project failure: Five best practices Throwing caution to the clouds Vendors take steps to lock down cloud storage services Encryption key management: The stumbling block to securing data What you need to know about storage encryption products Isilon targets enterprise NAS with Backup Accelerator, N+2:1 parity Storage Decisions Chicago 2009 Session Downloads Storage Decisions Session Downloads: Disaster Recovery Track (Chicago 2009) Storage Decisions Session Downloads: Data Retention & Retrieval Track (Chicago 2009) Data storage management Cloud storage pricing: The cost of a hypothetical month of cloud data storage Cloud storage pricing revealed: Hidden costs include data migration and access fees Creating a data center migration plan Top 10 enterprise data storage tips of 2009 Building a private storage cloud: Essential components How to add solid-state storage to your enterprise data storage systems Is cloud data storage right for your IT infrastructure? Optimizing enterprise data storage capacity and performance to reduce your data footprint Is data deduplication right for your primary storage infrastructure? Fail-in-place systems: Avoiding hard disk drive failures

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary hard drive shredder  (SearchStorage.com) Storage as a Service (SaaS)  (SearchStorage.com) storage encryption  (SearchStorage.com) storage security  (SearchStorage.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

that not all information will have to be encrypted. It all depends on context and risk.

Second, look at technical solutions that address each of your risks, including information classification, permissions, cryptography and key management. Focus on all-in-one technical products and reasonable processes that can provide centralized visibility and control into the encryption process. Don't forget about technical controls and storage-related operations when your next security assessment or audit rolls around. Finding out where the flaws are is the only way to know where things stand and whether your investment will pay off.

Perhaps most importantly, think long-term and make sure the controls and processes you're investing in and rolling out will carry you through the long haul.

Determine which encryption technology meets your needs

While vendors want to make it seem simple, don't assume you can throw a basic encryption appliance into the mix and instantly secure your data storage. There are lots of factors that determine which technology will best suit your needs, including:

• Key management: Whether it's standalone or having the ability to integrate across your network with other encryption systems, this is perhaps the biggest factor to consider.


• In-house expertise: A vendor's engineers can make stuff look easy, but once you're on your own, ongoing administration can become quite a hassle.


• "Plain vanilla" encryption vs. extended features: You can choose between plain vanilla encryption (often called inline encryption) and systems that have more extended features such as granular access controls and separation of duties. The one you choose depends on your network configuration and specific risks.

Your goal is to find a streamlined storage encryption technology that solves more problems than it creates. Every storage environment is different, as is every organization's business needs, so don't fall for a one-size-fits-all marketing allure.

When speaking with prospective storage encryption vendors make sure to ask questions such as:

1. How will the product interact with your firm's existing technologies?
2. Will it be transparent to applications and end users?
3. Will the product's reporting help your business get a snapshot of current security and/or compliance status?
4. Does the vendor support virtualization?

Above all, never rely on storage encryption 100% of the time. It's a great last line of defense, but there are plenty of ways to circumvent its protection if it's not implemented and managed properly.

Rate this Tip To rate tips, you must be a member of SearchStorage.com. Register now to start rating these tips. Log in if you are already a member. DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.