Multi-cloud use and compliance requirements shape encryption strategy, finds latest Thales Global Encryption Study
Thales, a leader in critical information systems, cybersecurity and data security, announces the results of its 2018 Global Encryption Trends Study. The report, based on independent research by the Ponemon Institute and sponsored by Thales, reflects some of the changes and challenges organizations are experiencing in a world marked by widespread cloud deployments, use of multiple public cloud providers and new regulations such as the EU General Data Protection Regulation (GDPR).
Key Points
- 84% of respondents either use the cloud for sensitive/non-sensitive applications and data today, or will do so in the next 12-24 months
- 39% encrypt in public cloud services (such as Amazon Web Services, Microsoft Azure and Google Cloud), a number that has risen 11% since last year’s report
- 49% of enterprises are either partially or extensively deploying encryption of IoT data on IoT devices and platforms
- 84% of respondents either use the cloud for sensitive/non-sensitive applications and data today, or will do so in the next 12-24 months
- 61% of respondents are using more than one public cloud provider, and 71% plan to in the next two years
- 39% encrypt in public cloud services (such as Amazon Web Services, Microsoft Azure and Google Cloud), a number that has risen 11% since last year’s report
- Overall HSM use grew to 41% -- the highest level ever. The most common use cases for HSMs are SSL/TLS and application level encryption, with 20% of respondents reporting that they use HSMs with blockchain applications
- 49% of enterprises are either partially or extensively deploying encryption of IoT data on IoT devices and platforms
“While enterprises are rightfully encrypting cloud-based data, 42% of organizations indicate they will only use keys for cloud-based data-at-rest encryption that they control themselves. Similarly, organizations that use HSMs in conjunction with public cloud-based applications prefer to own and operate those HSMs on-premises. These findings tell us control over the cloud is highly important to companies increasingly under pressure from data security threats and compliance requirements.”
Dr. Larry Ponemon, chairman and founder of The Ponemon Institute.
When considering the majority of organizations polled are using more than one public cloud provider, the report also raises questions about how organizations are enforcing consistent encryption and key management policies across multiple cloud vendors. Securing data in a multi-cloud environment can be especially problematic for organizations seeking compliance, particularly if they are attempting to instantiate a single organizational policy using different native tools from multiple cloud providers. Not surprisingly, policy enforcement is second only to performance as a most valued feature of encryption solutions in this year’s study.
“Companies navigating today’s threat landscape are understandably seeking out fast, scalable encryption tools that encompass enterprise and cloud use cases, and enforce policy consistently across both models. Fortunately, enterprises have more data protection choices today than when the race to the cloud began. These options include bring your own key (BYOK) and bring your own encryption (BYOE) solutions, which allow enterprises to apply the same encryption and key management solution across multiple platforms.” John Grimm, senior director of security strategy at Thales eSecurity
Thales eSecurity is the leader in advanced data security solutions and services that deliver trust wherever information is created, shared or stored. We ensure that the data belonging to companies and government entities is both secure and trusted in any environment – on-premises, in the cloud, in data centres or big data environments – without sacrificing business agility. Security doesn’t just reduce risk, it’s an enabler of the digital initiatives that now permeate our daily lives – digital money, e-identities, healthcare, connected cars and, with the internet of things (IoT), even household devices. Thales provides everything an organisation needs to protect and manage its data, identities and intellectual property, and meet regulatory compliance – through encryption, advanced key management, tokenisation, and privileged-user control and high-assurance solutions. Security professionals around the globe rely on Thales to confidently accelerate their organisation’s digital transformation. Thales eSecurity is part of Thales Group.