Security Park, the leading online news site for security professionals
Home | About us | Contact us | Submit an article | Advertise | Sales leads | Newsletter | RSS Newsfeed | SEARCH
Security Resources
Security News Security companies Jobs forum Knowledge base White papers Research library Security books Special reports Security links Security events Classifieds Directory GET LISTED!

Product News
Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Other Security Products

Security Markets
Bank and financial services security Buildings and office security Education and school security Entertainment and events security Homeland and Government security Hospital and healthcare security Infrastructure and utilities security Manufacturing and industrial security Public sector security Residential and home security Retail security SME security Sports and recreational security Transport and logistics security


Develop an ISO 27001-compliant Information Security Management System
This useful guide clarifies the steps you have to follow to develop an ISO 27001-compliant ISMS. Each step is integral in how secure your information security system is.

Need a
reference book?
Find it on Amazon:
Security books and magazines in association with Amazon.co.uk







advertise
sumbit an article
copyright
terms & conditions
privacy policy
CMS and Web design by www.Areza.com


SecurityPark Research Library

Help | Advanced Search
 What's New?
What's Popular?
Key Master
sponsored by Information Security Magazine
Posted:  06 Jun 2007
Published:  01 Jun 2007
Format:  HTML
Length:  5   Page(s)
Type:  Journal Article
Language:  English


ABSTRACT:
Faulty key management renders encryption useless and is a prime reason organizations that say they are encrypting databases still get breached. It can also negate any exception encryption gives you under breach disclosure laws. Even though California's SB 1386 requires organizations to report any disclosure of unencrypted data, improperly implemented encryption will put you back on the hook if the data may have been exposed.

The security of any encryption solution is based on the secrecy of the key, not the algorithm or cipher text. If the keys are not properly controlled, an attacker can acquire them.




BROWSE RELATED RESOURCES
Data Encryption | Public Key Encryption Software | Public Key Infrastructure

View All Resources sponsored by Information Security Magazine

Library Home | Advertise with Us | Product Library
A Service of Bitpipe

SecurityPark Research Library Copyright © 1998-2008 Bitpipe, Inc. All Rights Reserved.
Designated trademarks and brands are the property of their respective owners.
TechTarget · 117 Kendrick St · Needham, MA · 02494
Use of this web site constitutes acceptance of the Bitpipe Terms and Conditions and Privacy Policy.
webmaster@bitpipe.com