DB Confidential

摘要

Just how safe is the data your organization has spent big bucks collecting, scrubbing, transforming and storing in database files? The repercussions of an attack may escalate to litigation or lost revenue. Relief is at hand. We tested a new breed of encryption product that picks up where DBMSs leave off: They safeguard keys and provide policy-management tools for security administrators. These "data at rest" encryption systems come in two configurations: software-only and hardware appliances with browser interfaces. When used as part of a layered security strategy that incorporates network intrusion prevention and database access controls, data encryption can spell relief for beleaguered CIOs and security administrators. One caveat: No data-encryption system will protect data from being deleted or altered. This is not a product weakness—it's simply not a data-encryption function.