Enterprises have an increasingly difficult challenge as users bring their own devices--and continue to lose laptops--and as portable storage becomes even cheaper and more common.
Encryption and remote wiping of portable devices is often discussed for mobile phones and popular tablets using mobile device management (MDM) solutions. These solutions can be expensive and may not support all of the devices within an enterprise, leaving us to search for encryption or remote-wipe solutions for all of the devices we have floating around.
We know data requiring protection will be stored on portable devices and a protection solution is required. Short of preventing the data from being stored on the device, encryption is generally the best method to ensure data is secure even if stolen. Current versions of OS X include FileVault and Windows offers BitLocker as native file encryption solutions. In mixed environments, these solutions mean supporting multiple solutions, or not supporting older operating systems. Each may lack features required by the organization found in commercial disk encryption utilities such as Symantec's PGP Whole Disk Encryption or CheckPoint's Full Disk Encryption.
If the native operating system or a third-party commercial solutions aren't for you, check out TrueCrypt's open source offering.
Role-based access control based on least user privilege is one of the most effective ways to prevent the compromise of corporate data. Our new report explains why proper provisioning is a growing challenging, due to the proliferation of "big data," NoSQL databases, and cloud-based data storage. Download the report now. (Free registration required.)