Hackers Can’t Be Stopped, But Data Can Be Secured
The recent breaches of computer systems at the U.S. Senate and the International Monetary Fund have solidified industry concerns about corporate complacency and cybersecurity gaps. The IMF and Senate breaches rang an alarm, as some analysts and security experts have suggested links to other attacks waged against Google’s Gmail, RSA Security’s SecurID multifactor authentication tokens, Lockheed Martin Corp. and L-3 Communications Holdings Inc.
This avalanche has been waiting to happen for years and unfortunately these attacks are going to escalate. Once a company or organization has been targeted, there’s little it can do to keep hackers out.
A big part of the problem is that employees have too much access to internal information. The best thing companies can do is to make sure the core assets aren’t treated with the same priority as some of the lesser systems. A risk-adjust data protection approach is needed. So here is my advice …
Add a critical layer of security
Companies are changing their security strategies to better protect PII following the continuing attacks targeting personal information. The best thing to do is to make data unreadable for people, applications and databases if they don’t need to see the data. Why would they need to see everything? Example: most applications only need the last for digits in a social security number or credit card number. To do this replace or tokenize the rest of the digits!
Memory tokenization is the strongest data security solution for every situation, ranging from credit card data to birth dates and e-mail addresses, from almost every type of threat, while enabling systems to continue operating at a high level, even when expanding the number of data types stored. Memory tokenization is further differentiated from other forms of tokenization because of its lack of latency, performance and scalability issues, and it is suitable for more types of data and use cases than encryption. Thus, when in-memory tokenization is implemented, an organization will enjoy heightened security for all data types from both internal and external agents while not compromising speed and performance as sensitive data will be well protected across the enterprise.
Leave a Reply
Why Memory Tokenization will replace EncryptionNext →
Protegrity Tokenization Wins Info Security Award for PCI Compliance