« Consumerization, the White House, and Rockin’ IT | Main | Heartland and Protecting PII »

January 29, 2009


Saqib Ali

An alternative to deploying DLP technologies at SaaS provider level, would be to utilize the open architecture AJAX pattern called host-proof hosting in implementing these cloud enabled data storage vaults. With host-proof hosting, the pass phrase (decryption key) is never sent to the hosting server (i.e. the data vault). The pass phrase remains on the client computer and the data is encrypted and decrypted on the client. The hosting server only stores the encrypted data, without any means to decrypt it. This is simple to implement, and does not require excessive security controls to protect the data on the server as the server does not store the decryption key.

The comments to this entry are closed.

  • Burton Group Free Resources Stay Connected Stay Connected Stay Connected Stay Connected

Blog powered by Typepad