Category Archives: Encryption

Google reportedly wants to make email encryption easier, but don’t hold your breath

Posted on by

Still responding to the National Security Agency surveillance revelations, Google is reportedly preparing to help users beef up Gmail security with end-to-end encryption. The search giant is working on a way to make Pretty Good Privacy (PGP) encryption easier to use for Gmail fans, according to a report by Venture Beat.

The idea that Google would be working on email encryption is surprising since that would threaten the company's ability to scan email messages for keywords to insert adsa fact the Venture Beat report acknowledges.

Perhaps the company merely wants to make PGP easier to use for the small sliver of people who might actually want more privacy with their email. But as a regular feature for all? Not likely.

PGP relies on public-private encryption key pairings that make it all but impossible for someone other than the intended recipient to read an encrypted message.

Say Sally wants to send Bob a message. Once she's done composing it, Sally uses Bob's public encryption key to encrypt the message turning it into a bunch of garbled nonsense. Then only Bob can decrypt the message using his private key.

An attacker would have to spend an impossibly long time guessing combinations to decrypt the message, making it, as we said, nearly impossible.

There are ways around decryption such as stealing private keys or hacking into a PC once the message has been decrypted. But for the most part, public-private keys offer a reasonable amount of privacy.

The only problem is that employing PGPor its open source alternative GNU Privacy Guard (GPG)is not at all user friendly.

There are attempts to make encryption easier already such as the Thunderbird extension Enigmail and the browser plug-in Mailvelope. But so far only a relatively small number of users have been willing to try these easier solutions.

With millions of Gmail users, Google could widen the PGP/GPG user base considerably if it wanted tobut end-to-end encryption offers some big problems for a mainstream service like Gmail.

See original here:
Google reportedly wants to make email encryption easier, but don't hold your breath

Dell partners with DataMotion to offer email encryption

Posted on by

When Dell acquired SonicWALL in 2012 it was heralded as a significant step in providing greater security to the company's enterprise customers.

It's now announced a partnership with email encryption specialist DataMotion to allow users of SonicWALL email security to encrypt their sensitive emails and attachments.

The alliance will provide compliance-grade encryption capabilities for all emails and file attachments with just a simple mouse-click from within the Outlook client. The combined DataMotion-Dell SonicWALL solution helps prevent confidential data leaks and regulatory violations thanks to advanced compliance scanning, management and email encryption thus ensuring the secure exchange of email containing sensitive customer data or confidential information.

"We were very focused on partnering with a cloud-based email encryption solution that offered the best end-user experience on both desktop and mobile platforms. After evaluating the leading email encryption providers, it was clear that the DataMotion solution was the best choice for us," says Patrick Sweeney, executive director of product management at Dell. "Their encryption technology complements our existing email security portfolio very well, and the DataMotion team was really easy to work with and willing to accommodate our specific needs and requirements".

Encrypted email is now a legal requirement for some organizations in order to comply with privacy regulations like HIPAA (Health Insurance Portability and Accountability Act). The DataMotion platform allows Dell to offer its customers a powerful but easy to use, cloud-hosted service that can guard emails and attachments against data theft or accidental exposure.

"It is extremely satisfying to have our cloud-based email encryption technology recognized and adopted by a world leader in email security appliance solutions," says Bob Bales, CEO of DataMotion. "I am particularly pleased that Dell recognized not only our technical prowess, but also our agility and strength as an organization to support their offer worldwide. We are thrilled to be a part of the Dell Software partner family".

You can find out more about SonicWALL security products on the Dell website.

Image Credit:Pixel-3D / Shutterstock

Read more:
Dell partners with DataMotion to offer email encryption

SSD Survey Highlights Misconceptions About Encryption & Performance

Posted on by

COLORADO SPRINGS, Co. -- A survey by the Storage Networking Industry Association (SNIA) launched last fall has revealed some interesting user perceptions regarding the characteristics of solid state drives (SSDs), including their endurance expectations and their lack of interest in using built-in encryption features.

Paul Wassenberg, chair of SNIAs Solid State Storage Initiative (SSSI) said the results of the survey will be used to guide the groups education activities around the capabilities and features of SSDs. The call for input began last fall. Initial results, comprising 75% of the ultimate total of participants, were presented at the Storage Visions Conference earlier this year.

The survey identified respondents in four market segments, namely the mobile, desktop, server, and storage subsystem segments. Within each segment, SSD uses were broken down based on applications as well as interfaces being used. Overall, the highest use of SSDs is in storage subsystems -- by approximately 33%, with servers at roughly 27%, and mobile at around 21%. Desktop use of SSDs was about 8%. The majority, approximately 65%, were using the using the 2.5-inch form factor, 19% were using PCIe cards, and less than 5% were using mSATA. Capacity-wise, about 33% of respondents were using SSDs greater than 500 GB, followed closely by about 31% using between 301 and 500 GB.

The SSSI survey focused on five key attributes of SSDs -- performance, power, endurance, data integrity, and data encryption. While the ratings varied depending on the segment and uses, across all segments performance was fairly important, with IOPS and latency favored over throughput. Power was fairly important, but power management received only middling ratings.

Wassenberg said endurance was most important of all attributes for users, who consistently ranked it above all else. Data integrity and encryption were rated as fairly important, but the latter less so than anticipated. Wassenberg said this was notable, since comments from the survey revealed some outdated data ideas that encryption can reduce performance. That isnt true, he said, because recent generations of self-encrypting drives (SEDs) do not measurably impact SSD performance.

Key management is also a concern in larger systems with multiple drives, the survey found. Wassenberg said mobile devices, such as notebooks PCs, are particularly vulnerable to theft, and encryption would prevent the data from being accessed. Many SSDs being shipped today have data protection and encryption features built in, but often those abilities are not being switched on by OEMs.

Samsung, for example, recently added new security features to its self-encrypting drive (SED), the 840 EVO SSD, making it compatible with professional security software employed by enterprise organizations. In addition, there are a number of third-party vendors such as WinMagic and Wave Systems that offer tools to make SEDs easier for IT departments to deploy and manage while not degrading the performance of SSDs and or complicating the user experience.

Wassenberg said educating users on encryption technologies for SSDs and the benefits will be a focus for the SSSI going forward. Another area of education will be performance, he said, and the importance of preconditioning drives so that users have better expectations of how a drive performs over time. An SSDs performance is higher fresh out of the box, but it will drop after several writes, and then give a more realistic indication of how it will likely perform over time.

The SSSI offers test specification, specifications and software that allow users to test workloads and maintain industry-standard methodology for pre-conditioning and steady state determination for SSDs.

For now, the SSSI survey is going to be kept open for an indefinite period to gather more data, and users are welcome to participate in a dedicated LinkedIn group.

See the article here:
SSD Survey Highlights Misconceptions About Encryption & Performance

FileMaker DevCon 2014 Preview: Under the Hood with Database Encryption and FileMaker Server 13 – Video

Posted on by


FileMaker DevCon 2014 Preview: Under the Hood with Database Encryption and FileMaker Server 13
Join Jon Thatcher, Lead Software Engineer Database Server, FileMaker Inc. on July 30, 2014 at 11:45am and get #39;under the hood #39; of FileMaker Server 13. Jon will also participate in a Q A Panel...

By: FileMaker, Inc.

Go here to read the rest:
FileMaker DevCon 2014 Preview: Under the Hood with Database Encryption and FileMaker Server 13 - Video