SAN FRANCISCO & PLANTATION, Fla.--(BUSINESS WIRE)--Thales, leader in critical information systems and cybersecurity, announces the publication of its latest 2015 Global Encryption and Key Management Trends Study. The report, based on independent research by the Ponemon Institute and sponsored by Thales, reveals that the use of encryption continues to grow in response to consumer concerns, privacy compliance regulations and on-going cyber-attacks and yet there are still major challenges in managing key across what are the mostly fragmented and tactical deployments of encryption technologies.
More than 4,700 business and IT managers were surveyed in the US, UK, Germany, France, Australia, Japan, Brazil, Russia and for the first time India and Mexico, examining global encryption trends and regional differences in encryption usage. The report is now in its tenth year since its launch in 2005.
- Use of encryption continues to rise with 34% of respondents reporting that their organization uses encryption extensively
- Deployment of encryption is steadily shifting from a tactical to a strategic activity with 36% of organizations having an enterprise wide encryption strategy
- The top three reasons for deploying encryption are compliance with data protection mandates, to address specific security threats and to reduce the scope of compliance audits
- The use of encryption had a dramatic effect on the perceived requirement to notify those effected in the event of a data breach with nearly half of respondents believing that the use of encryption removed the need to disclose a breach
- The number one perceived threat to sensitive data is employee mistakes rather than external attack
- Despite cloud and big data getting all the hype, these are the least likely areas to use encryption – whereas backend storage, archives and databases are the most likely
- The biggest challenge faced by organizations executing a data encryption policy was in discovering where within their networks their sensitive data actually resides
- Key management is identified as a major pain point by more than half of respondents
- The primary reasons why key management is so painful are lack of corporate ownership, fragmented systems and inadequate tools
- More than half of respondents view hardware security modules (HSMs) as an important part of a key management strategy
Dr Larry Ponemon, chairman and founder of The Ponemon Institute, says:
“Encryption usage continues to be a clear indicator of a strong security posture but there appears to be emerging evidence that concerns over key management are becoming a barrier to its more widespread adoption. In this study we drilled down into the issue of key management and found it continues to be a huge operational challenge. What is clear is that many organizations lack formal ownership and accountability when it comes to key management which is very concerning when you consider the value of the data being protected and operational implications of losing or mismanaging keys.”
Richard Moulds, vice president strategy at Thales e-Security says:
“Whilst key management is now being recognized as a widespread organizational challenge, it is not a new issue. The challenges associated with key management have been addressed in heavily regulated industries such as payments processing, where best practices are well proven and could translate easily to a variety of other verticals. With more than 40 years’ experience providing key management solutions, Thales is ideally positioned to help organizations re-assess and re-evaluate their crypto security and key management infrastructure and deliver solutions that ensure their integrity and trustworthiness.”
Download your copy of the new 2015 Global Encryption and Key Management Trends Study
Visit Thales at booth South Expo #S607 South Expo, RSA Conference, Moscone Center, San Francisco, April 20-24, 2015 and pick up a signed copy of Laura A. Ackley’s San Francisco’s Jewel City celebrating the centenary of the Panama-Pacific International Exposition.
See demonstrations of Thales keyAuthority in the OASIS KMIP interoperability showcase booth South Expo #S1921.
For industry insight and views on the latest key management trends check out our blog www.thales-esecurity.com/blogs
About the Ponemon Institute
The Ponemon Institute© is dedicated to advancing responsible information and privacy management practices in business and government. To achieve this objective, the Institute conducts independent research, educates leaders from the private and public sectors and verifies the privacy and data protection practices of organizations in a variety of industries.
About Thales e-Security
Thales e-Security is a leading global provider of trusted cryptographic solutions with a 40-year track record of protecting the world’s most sensitive applications and information. Thales solutions enhance privacy, trusted identities, and secure payments with certified, high performance encryption and digital signature technology for customers in a wide range markets including financial services, high technology, manufacturing, and government. Thales e-Security has a worldwide support capability, with regional headquarters in the United States, United Kingdom, and Hong Kong. www.thales-esecurity.com
Thales is a global technology leader for the Aerospace, Transport, Defence and Security markets. With 61,000 employees in 56 countries, Thales reported sales of €13 billion in 2014. With over 20,000 engineers and researchers, Thales has a unique capability to design and deploy equipment, systems and services to meet the most complex security requirements. Its unique international footprint allows it to work closely with its customers all over the world.
Positioned as a value-added systems integrator, equipment supplier and service provider, Thales is one of Europe’s leading players in the security market. The Group’s security teams work with government agencies, local authorities and enterprise customers to develop and deploy integrated, resilient solutions to protect citizens, sensitive data and critical infrastructure.
Drawing on its strong cryptographic capabilities, Thales is one of the world leaders in cybersecurity products and solutions for critical state and military infrastructures, satellite networks and industrial and financial companies. With a presence throughout the entire security chain, Thales offers a comprehensive range of services and solutions ranging from security consulting, intrusion detection and architecture design to system certification, development and through-life management of products and services, and security supervision with Security Operation Centres in France and the United Kingdom.