Enterprise Security World
e-securityworld.com 

Previous topic

 TRIAL/EVAL - Unix Security - Cryptography - CONTACTS

Unix Security & Linux Security

Next topic




Try It!

unix security, iseries security, linux security, nt security, unix, linux, iseries, access control, authentication, os/390

Trial/Evaluation
Page
 
 
 
 

The Leading Security Products

 


 



"Where to find Cryptography Information and Solutions"



Cryptography is fundamental to information security, and there is absolutely no doubt about it. It is often seen as the bottom line, basic protection for the most confidential of data.

The problem is that it also often seen as a 'black art', too complex to engage. This is a mistake.

Yes, cryptography at the algorithmic level is complex. However, as with many topics, it can be approached at different levels. For example, source coding, management, implementation, and so on. Each of these actually requires differing skill sets, and of course, different sets of knowledge.

The critical factor here is to ensure that unease, at perhaps the technical nature of cryptography, does not prevent or delay full and proper deployment.


KEY MANAGEMENT

One of the strengths of cryptography is its portability. By this, we actually mean the ability for information to retain its confidentiality regardless of its location: for example, whether it is safely locked in a file, or whether it is in transit over a network. Properly encrypted and managed data will be secure from prying eyes.

However, it is not all about the status of the data. For the information to retain its security, the keys to encrypt/decrypt that information must also be managed securely - enter 'key management'. If an encryption key is exposed, so is the data that is encrypted. It is as simple as that. Secure key management is as important as secure encryption.


CRYPTOGRAPHY INFORMATION

Cryptography is a massive topic, far too big to explore in depth here. However, we have identified a number of sources which may assist:


Cryptography
A toolkit comprising presentations, source, audit checklist and so on.

Matt Blaze
Leading source of papers and background information.





Return to main page



Contact us by Email




Copyright © 2002 Enterprise Security Technologies