Key management holding back encryption

Businesses are keener than ever to roll out data encryption, but are still struggling with the complexity of key management, a new survey has concluded.

The survey was carried out by encryption specialist nCipher, sampling 237 "decision makers" at large enterprises across the globe.

The main problem appears to be key management with nine percent of those surveyed having more than 10,000 keys on servers, and 11 percent having the same number on desktops. Further down the scale, 16 percent had 1,000 keys on servers, with almost a quarter having the same number of desktops.

Underscoring this issue, 31 percent of managers with 500 or more keys in their organization admitted they knew little or nothing about available key management systems.

More encouragingly, the survey found that encryption is rapidly becoming a mainstream technology, with its use now mandated across a wide range of applications. Drivers included government legislation, and private sector date protection standards developed by groups such as the Payment Card Industry (PCI).

Popular applications for encryption included traditional ones such as web-based SSL and VPNs as well as newer concerns to secure "data-at-rest" and ensure that it hadn't been tampered with. A hefty 82 percent said they would be using encryption to secure stored data within 18 months, with 69 percent saying they intended to do use such security to ensure data integrity using time-stamps and right management systems within the same period.

One major area of future growth is the use of Trusted Platform Modules (TPMs), hardware-based systems used to restrict access to hard drive data on laptops and PCs. This technology is still in its infancy, and the survey found a degree of ignorance about the systems. TPM is a technology that will be supported in the next version of Windows, Vista.

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Follow our new CSO Australia LinkedIn
Follow our new social and we'll keep you in the loop for exclusive events and all things security!
Have an opinion on security? Want to have your articles published on CSO? Please contact CSO Content Manager for our guidelines.

More about nCipher

Show Comments

Featured Whitepapers

Editor's Recommendations

Brand Page

Stories by John E. Dunn

Latest Videos

More videos

Blog Posts