Cyber Security Awareness Month

Cybersecurity Tip #15: Use Encryption Properly

#CybersecurityTip: Encryption is great, but it isn't everything. There are a number of things to be aware of. The Advanced Encryption Standard (AES) is to ensure data is encrypted in transit and at rest at 256-bit AESThis offers availability for a 48-character string to be converted into a 256-bit private encryption key that only you has access to. The catch: if the encryption keys are stored in the same location as the encrypted files, consider this security technique obsolete.


Storing Encrypted Data

It is very important to understand where your data is stored (in its encrypted form) and where your encryption keys are located. Ensure they are stored in different, secure data centers. It is good practice to ensure these data centers are located across country and ensure they are not connected  into a redundancy circuit. Extra security measure should be taken. Examples include biometric controlled access, backup generators, controlled connections to the Internet and encryption keys require additional credential data such as usernames, passwords, etcetera.

Other Policies

Additionally, various industries have different encryption policies, take HIPAA for example for Healthcare. HIPAA (Health Insurance Portability and Accountability Act of 1996) is an American legislation that provides data privacy and security to safeguard medical information. MSPs in such industries must ensure their endpoints are complying to such policies or else legal implications may occur. It is important to know where encryption comes in-handy and how to make use of it properly for your MSP.

>> Want to learn more? Passportal will be releasing one cybersecurity tip a day throughout the month of October. Click here to view all.

Recently Released Cybersecurity Tips:

Topics: Cybersecurity Tips