Low bit levels could compromise encryption

Encryption take-up may be improving, but the bit levels being used also need to be increased says Origin Storage

Düsseldorf, (PresseBox) - Newswire reports suggest that the take-up of encryption amongst organisations is improving, but there is a big question mark over the encryption used being powerful enough to beat the crackers, says Origin Storage.

"Recent reports have shown a growing number of organisations are adopting data encryption in the wake of a litany of data breaches, losses and thefts in the last 18 months," said Andy Cordial, the storage systems integration specialist's managing director.

"The big question, however, is whether the public and private sector organisations adopting data encryption - particularly on their laptops and other portable storage devices - are employing the most powerful levels available," he added.

Cordial's comments come as the National Institute of Standards and Technology (NIST) in the US has recommended that firms no longer use 1024-bit RSA encryption from 2010 onwards in the light of rapidly-accelerating brute force decryption methodologies.

Microsoft, meanwhile, says Cordial, has followed NIST's recommendation - made in part three of NIST's Special Publication 800-57 - by promising to remove support for 1024-bit roots from its root certificate key-store as of January 1, 2011.

This comes as several research firms - notably IDC and Research & Markets - are reporting the take-up of encryption amongst organisation around the world as taking off.

If you look at Research & Markets' 'Information Security - Asia Pacific Endpoint Encryption Market Outlook 2009 - 2013' report just issued, says Cordial, encryption is now recognised as a fundamental element to protecting data.

And, he continued, IDC's various global encryption reports in recent months back this up - encryption take-up is now soaring.

Whilst this is apparently good news, Origin's managing director added, the $64,000 question is whether firms are using a strong enough form of encryption, preferably 2048-bit and above.

This, he says, is particularly important where data is being stored on a laptop's hard drive or, for that matter, any form of portable storage, which - unlike a desktop PC - can be taken almost anywhere.

"It's all very well organisations embracing encryption to protect confidential data, but if they are using a basic level of encryption, chances are their data can still be decoded by an accelerated brute force password attack," he said.

"Since we know how difficult it is to get approval to sell into specific government areas, there is a strong chance that the antiquated approvals process may end recommending an encryption technology that will be about as much use as a chocolate teapot," he added.

For more on encryption take-up: http://www.researchandmarkets.com/reportinfo.asp?cat_id=0&report_id=993200&q=encryption&p=1
For more on Origin Storage: http://www.originstorage.com

Press releases you might also be interested in

Weitere Informationen zum Thema "Software":

SAP gibt Anwendern mehr Zeit für den Umstieg in die Cloud

2025 soll­te mit der sta­tio­nä­ren ERP-Lö­sung für das Per­so­nal­we­sen (SAP Hu­man Ca­pi­tal Ma­na­ge­ment – HCM) ei­gent­lich Schluss sein. Da­nach woll­te SAP nur noch die Cloud- bzw. SaaS-Lö­sung Suc­cess­Fac­tors an­bie­ten.


Subscribe for news

The subscribtion service of the PresseBox informs you about press information of a certain topic by your choice at a choosen time. Please enter your email address to receive the email with the press releases.

An error occurred!

Thank you! You will receive a confirmation email within a few minutes.

I want to subscribe to the gratis press mail and have read and accepted the conditions.