Dealing With The Biggest Cybersecurity Fallacy In Enterprise
There are tons of security fallacies in enterprise. But what’s the most prevalent of them all? More importantly, how do you deal with it? If you wanted to talk shop about all the security fallacies floating around enterprise IT, it’s doubtful you’d ever run out of things to say. From remote wiping to cloud security to digital espionage, the business world is rife with misinterpretations, misinformation, and FUD-fostering stories. Of all the fallacies and falsehoods, one stands out to me above all others as the most dangerous, most prevalent, & most baffling: the idea that somehow, if data is encrypted, it’s not at risk of being compromised. I’ve witnessed people on both side of the IT coin refer to encryption as some sort of holy grail of data protection. On one hand, every time there’s a terrorist attack or similar tragedy, politicos begin to bray about how it wouldn’t have happened if only law enforcement agencies had access to backdoors into strong encryption. On the other hand, whenever a data breach occurs, it seems like the first notion many security experts default to is that it was somehow a failure in terms of encryption – if the data had been properly encrypted, the breach would never have happened.