Rating: +0
Scott,
When you look at most corporations their largest volume of data is "resting data" I see this data as the largest concern, or at least it should be.
Corporations have lots of data which is database information that can also be large but the data is tightly coupled to the corresponding applications and the applications typically provides more than adequate security controls around authentication, authorization and even employ different levels of encryption, a simple example is email – the volume is large, but the email application controls authorization and authentication and the infrastructure protections are adequate at the perimeter. So the application security combined with the OS security, then infrastructure firewalls and other fringe security and it amounts to generally good protection for this class of data. Most companies have a high confidence in their email security. Now the “aha” moment, using the same example is when you ‘archive’ or ‘tier’ the information from the “application” (any app) and move it off to a tier2 storage sub-system for any of the following reasons; reducing the amount of tier1 storage and its associated productivity benefits on backup, performance, etc.; or compliance and legal discovery. Once the data is out of the mail database (or any app) and in another system the data has been disconnected from the primary applications controls (primarily authentication and authorization) and is just data under someone elses control and this is the data that is most at risk.
You need new methods and controls for protecting this data. Also, note that most hacks come from within not from outside the firewall, so whatever you do has to address internal data security vs. shoring up the perimeter. Data is best protected at the source, the bit. Top issue is data security.
Good Luck,
Peter
Links:
* http://www.csi1000.com