- Nokia's new N97 vs. the iPhone
- 10 Microsoft research projects
- Hard to get justice in MySpace case
- Smartphone smackdown: Storm vs. iPhone
- Apple removes antivirus support page
Proposed standards for protecting data on disk or tape are gathering steam within the IEEE and could be supported in products as soon as next year, according to proponents.
Such standard technology could go a long way toward safeguarding organizations and their customers from the perils of lost or stolen disks and tapes, backers say. The need to push through such standards has been made more urgent since high-profile companies such as Ameritrade and Bank of America earlier this year lost unencrypted tapes containing customer data.
"For businesses in regulated industries or that store personal financial information, encryption may very well be a requirement," says Stephanie Balaouras, a senior analyst for Forrester Research. "For other businesses it's a matter of managing risk, and encryption is one of many options that businesses must consider."
The proposed standards for how data is encrypted on disk and tape are the IEEE P1619 and P1619.1 Standard Architecture for Encrypted Shared Storage Media. The IEEE's Security in Storage Working Group is fine-tuning the standards, hopefully for approval in months to come.
"We have a draft standard for disk that is three years in the making and is very close to being complete. We have a stable draft for disk and a very preliminary draft for tape," says Jim Hughes, Sun fellow and chair of the working group. "I expect both to be approved in 2006."
The standards would address encrypting data at rest on disk or tape, whereas protocols such as IPSec, Secure Sockets Layer (SSL) and Secure Shell (SSH) are used to encrypt data in transit. While some storage-product companies already support one sort of encryption or another, having standard implementations could make it easier for customers to safeguard data across heterogeneous storage environments, standards supporters say.
The proposed standards define three encryption algorithms and a method of key management designed to ensure the compatibility and interoperability of different storage gear. For encryption on disk, the specification proposes using the new Liskov, Rivest, Wagner-Advanced Encryption Standard (LRW-AES) cryptographic algorithm. For tape encryption, it proposes using the National Institutes of Standards and Technologies' (NIST) AES Galois/Counter Mode (AES-GCM) and AES Counter with CBC-MAC Mode (AES-CCM) standards.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment