The demise of TrueCrypt in May has affected businesses’ security more than most organizations realize. Whether your business has an experienced IT team or not, there is a good chance that you used TrueCrypt in some fashion if you encrypted data. In fact, Dunbar Cybersecurity’s technology partner, Sophos, recently conducted a study that showed 1/3 of IT professionals that use cryptography used TrueCrypt in one way or another. Likewise, 68% of TrueCrypt users have used the software in their business environment.
Clearly then, TrueCrypt’s sudden disappearance leaves an unsettling void in the realm of cryptography. The discontinuation of the disk and file encryption freeware leaves no viable non-commercial alternative for users. As a result, more individuals and businesses will turn to commercial providers like Microsoft BitLocker or Apple FileVault to fulfill their cryptographic needs.
TrueCrypt’s unforeseen disappearance will only serve to spur this switch more quickly, as 64% of its users say they are reconsidering their trust in something from anonymous sources with no guarantee of service continuation, or that it will even perform as it claims. Now is the time to reevaluate your data protection strategy and ensure that you have proven encryption solutions in place. As a first step, take a look at these 5 great recommendations for life after TrueCrypt that Sophos provides:
- Use vetted, trusted, operating system-level encryption like Microsoft BitLocker and Mac FileVault. TrueCrypt was not using the latest technology, so now is a great time to move to compliant encryption standards
- The real issue with business use of encryption has been key management. You need good key management that enables encryption beyond just full-disk on your laptops
- Data isn’t only on your disks. Users are taking it everywhere, especially the cloud. Now’s a good time to reevaluate your data protection strategy to make sure you’re protecting data everywhere
- Non-Windows platforms need encryption, too, including OS X, Android, iOS and *nix systems. And don’t forget any systems still running WIndows XP…you’ll need to protect them, too
- A thumb drive or DVD can hold sensitive records, too. You need to encrypt all of your storage devices
Following these five suggestions will help to either start your encryption program, or to smoothly transition from TrueCrypt to an alternative solution.
If you’d be interested in learning more about Sophos’ SafeGuard encryption platform, administered by Dunbar Cybersecurity, contact us.