That quote was nicked #
Posted Tuesday 11th January 2011 15:14 GMT
from They Live.
4 publicly visible posts • joined 25 Aug 2009
Is there not a presumption to use strong encryption between the user and the data centre? Can the encryption not be maintained on the stored data? Certain confidential data will require appropriate encryption as a matter of course anyway. (When I say encryption, I actually mean a complete security policy including encryption, access control, authentication, backup, blah)
I still think the weakest points will be the employees and business partners themselves in casual exchange of confidential data.
There is an argument that a dedicated secure data centre can do a better job than a small company trying to build their own data centre on the cheap. By analogy, my money is probably safer in the bank than in my mattress, despite recent best efforts by the banking sector.