Best encryption software for business in 2020: BitLocker, FileVault, Guardium, and more - ZDNet

---

• Best encryption software for business in 2020: BitLocker, FileVault, Guardium, and more - ZDNet
• Is It Safe to Use Zoom? - New York Magazine
• PreVeil - Review 2020 - PCMag UK

Best encryption software for business in 2020: BitLocker, FileVault, Guardium, and more - ZDNet Posted: 15 Apr 2020 10:15 AM PDT When mass data collection and big data analysis exploded on the technology scene, security and encryption, unfortunately, took a back seat.  In a world where data breaches are commonplace -- involving everything from device theft to vulnerability exploitation and open AWS buckets exposed to the world -- businesses both large and small must now educate themselves and employ encryption software to enhance the data they have become controllers of.  Encryption can help protect information stored, received, and sent. Readable information is scrambled through the use of encryption keys, algorithms that can sort through this text and return it to a readable format. Today, the Advanced Encryption Standard (AES) using 128- and 256-bit key lengths, the successor to DES, is in common use worldwide.  If strong encryption and security practices are not in place, businesses are not only opening themselves up to potential cyberattacks, but also the loss of corporate and customer information, fines for non-compliance with laws including HIPAA and GDPR, financial damage, and the loss of reputation.  Below, we list our favorite encryption solutions, suitable for users, SMBs, and enterprise players.  Disclosure: ZDNet may earn an affiliate commission from some of the products featured on this page. ZDNet and the author were not compensated for this independent review.  Free Best suited for: Windows users who need onboard device encryption   Microsoft's BitLocker, available on business editions of the OS and server software, is the name given to a set of encryption tools providing either AES 128-bit or AES 256-bit device encryption.   The Redmond giant's solution is focused on the encryption of drives on a device out of the box and can also be used to protect removable drives through BitLocker To Go. Recovery keys can also be set to retrieve data should firmware issues or errors prevent IT administrators from accessing encrypted drives.    A set of administration tools, including features such as enabling the encryption of full drives and other media, as well as domain or Microsoft account linking, are included.    BitLocker's hardware specifications require an onboard Trusted Platform Module (TPM) chip and Modern Standby support, two elements generally supported on modern Windows PCs.     BitLocker is built into the Windows operating system but only a limited set of tools are included with Home editions, the standard OS that many PCs consumers purchase. Instead, users must upgrade to Windows 10 Pro or Windows 10 Enterprise to take full advantage of Microsoft's encryption.    Interested in BitLocker? You can check out our user guide here. View Now at Microsoft Subscription Best suited for: Enterprise users who need flexible encryption across multiple environments IBM Guardium is a data protection platform that pulls together a suite of security tools in an effort to streamline data management and reduce vendor product disparity.    Encryption services are included for corporate data, alongside data discovery and classification, vulnerability scans, data activity monitoring, analytics, and compliance reports, among other features.   IBM Guardium for File and Database Encryption can be used to encrypt on-premise files and databases by leveraging the hardware encryption capabilities of host CPUs including Intel and AMD AES-NI, PowerPC 8 AES, and SPARC.    Data can be encrypted on-the-go without taking business applications offline, levels of encryption can be enabled to match user access rights, and keys can be managed from a central platform.     A useful accompaniment to IBM encryption is access policies that can be set to identify anomalous behavior such as mass copy and deletion of files and directories. Compliance reports can also be generated to adhere to legal requirements set by GDPR, CCPA, HIPAA, PCI-DSS, and SOX.   The solution requires a virtual data security module (DSM) virtual appliance deployed on a VMWare hypervisor. IBM says some clients achieve an ROI of up to 343%.   IBM Guardium is a subscription-based service provided on request and is most suitable for enterprise companies willing to invest in a one-stop-shop solution for data management and protection.  View Now at IBM Free Best suited for: Mac users who want on-device encryption.   Apple's FileVault is built-in to the macOS operating system. Apple first introduced FileVault in 2013, later upgrading to FileVault2 on macOS Lion and later versions. The onboard system can be enabled to encrypt all information stored on disk to prevent the theft of data by anyone without access or account credentials. iMac Pro and users of devices with Apple T2 chips will have their information encrypted automatically.    Modern CPU power is leveraged to provide AES 128/256-bit encryption. Users can choose to leverage their iCloud account credentials or generate a recovery key to unlock disks if they forget their standard device password.    However, businesses should not consider FileVault to be a full, robust solution for data security; rather, it is a useful addition for ensuring a basic level of encryption and protection.  View Now at Apple Subscription Best suited for: Protecting information on machines used by multiple individuals, collaboration   AxCrypt is an encryption solution that has been widely adopted and should be considered if more than one individual is using the same machine on a regular basis.    Files are secured with AES 128/256-bit encryption on Mac and Windows machines through simple one-click functionality. Once files and directories are secure they can be accessed with a password, of which more than one AxCrypt user can open if they have been given permission to do so. In addition, information can be locked down across mobile devices and encryption standards can be extended to cloud services, such as Google Drive or Dropbox.   Business users can manage passwords through a central platform.    A free, limited version of AxCrypt is available. Yearly subscriptions for premium and business versions, including extended features and licensing for more than one machine, are also on offer.  View Now at AxCrypt Subscription Best suited for: Users who need strong encryption across multiple operating systems and the cloud   Kruptos 2 is a professional encryption suite for Windows, Mac, and Android. The strength of the software lies in its versatility, with encryption for content including files and financial data across operating systems, mobile, portable storage, and cloud services including Dropbox, Microsoft OneDrive, Apple iCloud, and Google Drive.    Information is protected with AES 256-bit encryption and files can be shared across compatible platforms. You can also use Kruptos 2 as a strong password generator as well as a sensitive information vault by taking advantage of the secure note editor.    The software also includes a file shredder for securely wiping data.    Kruptos 2 operates on a license model in which you only need to purchase the software once. The cheapest option is a single license for macOS and Windows machines at $39.95.    A cross-platform bundle is on offer for $64.95 and an additional solution, the Kruptos 2 to Go USB vault, can be purchased as a bolt-on for $24.95 -- or together with the cross-platform option for a total of $79.95.   $40 at Kruptos2 Subscription Best suited for: Users that need enterprise-wide encryption    Trend Micro's Endpoint Encryption software, part of the Smart Protection Suites range, can be used across Macs, Windows machines, and removable media to encrypt either full disks or individual files and folders.    AES 128/256-bit encryption is on offer through passwords and multi-factor authentication across endpoints. Multiple user and administrator accounts can be set for individual devices.    Other functionality includes the release of one-time passwords to access endpoint data, the remote wipe or lock of stolen devices, lockouts automatically enabled in response to failed authentication attempts, and the support of consumer-grade encryption services including BitLocker and FileVault.    The management console for the software and keys can be integrated with other Trend Micro software. In addition, the suite is FIPS certified.    Trend Micro's Endpoint Encryption solution is priced based on request.  View Now at Trend Micro Subscription Best suited for: Those who need end-to-end encryption for cloud storage services   Businesses that mainly employ cloud storage rather than on-premise services should investigate Boxcryptor as a possible encryption solution of value.    Boxcryptor is a cloud-focused encryption software supporting a total of 30 cloud services including Dropbox, Google Drive, and Microsoft OneDrive. A combination of AES 256-bit encryption and RSA encryption is utilized.    Boxcryptor calls itself a "zero-knowledge provider" and aims to make spreading encryption across multiple services and mobile devices as easy as possible.    Passwords, password keys, and file keys are kept on user devices, while business user keys, group keys, and company keys are encrypted and stored on the Boxcryptor server.    The vendor uses a data center in Germany that is ISO/IEC 27001:2013 certified.   Boxcryptor has a limited, free option available for up to two devices. A personal subscription costs $48 per year, whereas an account for business use is priced at $96 for a yearly subscription.  View Now at Boxcryptor Subscription Best suited for: Users who require real-time management of encryption and applications   Sophos SafeGuard Encryption should be considered by enterprise users that want to ensure content is encrypted the moment it is created.    The SafeGuard Management Center connects to BitLocker and FileVault for the control of access credentials and keys and the AES 128/256-bit encryption of either full disks or individual files. Users and applications are verified in real-time to protect data, and passwords can be created on the fly for sharing content.    Mac, Windows, and Android are supported.   Sophos SafeGuard Encryption is on offer through different licensing models depending on whether a client requires web, on-premise, disk encryption, or a central management platform. View Now at Sophos Subscription   Best suited for: Financial data holders TokenEx is an encryption offering that specializes in the management and security of financial data.    This data protection suite offers tokenization as a data steward -- the substitute of sensitive information, such as card numbers and PII, with other data "tokens" removing its intrinsic value -- to enhance the security of customer records.    Batch processing of customer financial data takes place through browser platforms and mobile software without the need to store customer information on-premise. AES 256-bit encryption is overlaid across the tokenized data.    TokenEx, which is PCI compliant, is available as a licensed product with a range of payment options. View Now at TokenEx What we look for in encryption software ZDNet's recommendations are based on major themes: Strength, flexibility of use, and multi-device and OS support.    While some users and SMBs may need no more than simple, standalone encryption offerings to protect content on PCs, today's encryption solutions in the enterprise space -- especially important for larger firms -- must also keep hybrid environments and remote working in mind.    Made even more crucial at present due to COVID-19, there is a high demand for encryption solutions able to protect corporate, sensitive data that may be accessed remotely by workers and hosted either in the cloud or in company networks. Strong encryption is now necessary when files must be shared with others not only to maintain your privacy but also to ensure data does not end up in the wrong hands.  ZDNet Recommends

Is It Safe to Use Zoom? - New York Magazine Posted: 09 Apr 2020 11:09 AM PDT Photo: Yuriko Nakao/Getty Images Over the past month, the teleconference software Zoom has seen explosive growth because of, you know, the thing. But that growth has also come with increased scrutiny and a slew of uncovered security screwups. Taken individually, many of the problems seem more sloppy than malicious or sneaky, but taken in aggregate, they make a billion-dollar publicly traded company seem like it's held together with duct tape and string. A Sketchy Installer There was the problem with Zoom's installer, which took over admin privileges to gain root access to a user's computer. That access could be abused to surreptitiously install programs without the user's knowledge, including the ability to access a user's webcam and microphone. (Last summer, a security researcher found a Zoom feature that opened up vulnerabilities by turning any user's computer into a local server. In an unprecedented move, Apple silently pushed out an operating-system update to disable it.) If the App is already installed but the current user is not admin, they use a helper tool called "zoomAutenticationTool" and the AuthorizationExecuteWithPrivileges API to spawn a password prompt identifying as "System" (!!) to gain root (including a typo). pic.twitter.com/gp9DVCoVCm — Felix (@c1truz_) March 30, 2020 Questionable Routing There are questions about where Zoom is sending the data it collects from your computer. Zoom was found to be sending data to Facebook, even if you weren't logged in to a Facebook account. Zoom also apologized this month for mistakenly routing traffic through China, where the internet is heavily monitored by the government. Most tech companies operating in China have strict separations between domestic and international online traffic. Dubious encryption That monitoring would be less of a concern if Zoom were encrypted end-to-end, as the company claimed in marketing materials. But it admitted to The Intercept that Zoom did not use E2EE for video calls. Zoom uses some encryption (known as transport encryption) but not the more secure end-to-end type. Some of the confusion stems from defining what an "end" is. Zoom seems to think that its servers, acting as middlemen between users, count as such. Zoombombing There's also the rash of "Zoombombing" that has gone on. People are guessing or finding Zoom meeting ID numbers online and entering uninvited to leave disruptive comments or share disruptive media using Zoom's screen-share feature. Finding open meetings, which have IDs from nine to 11 digits, is relatively simple and has already been automated. Until a patch issued this week, the meeting ID would often be highly visible in screenshots. Zoom says it has patched out many of the security flaws. The company has also turned on common-sense features, such as password-protecting meetings by default, to prevent Zoombombing. CEO Eric Yuan also published an apologetic blog post at the beginning of April, announcing a 90-day feature freeze, shifting all development resources toward bolstering security. "[W]e did not design the product with the foresight that, in a matter of weeks, every person in the world would suddenly be working, studying, and socializing from home," Yuan wrote. "We now have a much broader set of users who are utilizing our product in a myriad of unexpected ways, presenting us with challenges we did not anticipate when the platform was conceived." Those fixes haven't stopped clients from growing wary and looking for other options. The New York Department of Education has recommended that its schools find a new teleconference software to conduct classes with. Taiwan has banned the software from use in government over fears of Chinese spying. Google has also prohibited the software from its employees' work-issued devices, stating that the app "does not meet our security standards." The question for you, a normal person with normal problems, is: "Should I care about any of this?" Personally, I think you should care about it, but I'm less sure you need to worry. The documented security flaws of Zoom would require a high level of targeting and precision to fully exploit. This isn't the sort of lax security that could lead to catastrophic widespread data leakage; it's the sort of lax security that leaves high-value individual targets vulnerable. Amid the fallout from Zoom's many security stumbles, Yuan contacted Facebook's former head of information security Alex Stamos for advice. In a blog post announcing that he was consulting with Zoom, Stamos reiterated a core idea to keep in mind when thinking about security issues: "Coding flaws and cryptographic issues are important, but the vast majority of real technological harm to individuals comes from people using products in a technically correct but harmful manner." Zoombombing, for instance, is not a result of hacking and subterfuge; it's a result of sloppiness enabled by Zoom and by users through poor software design. The question for you surrounding Zoom then becomes, "Am I really that important?" If you work for a government entity or a multinational corporation, or you handle sensitive information like medical or financial data, maybe take a look at some of Zoom's competitors. Google and Microsoft would certainly not mind more enterprise customers. But if you're using Zoom's most recently updated software and you have basic privacy features enabled, such as password-protecting your meetings, you can probably rest easy. Sign Up for the Intelligencer Newsletter Daily news about the politics, business, and technology shaping our world. By submitting your email, you agree to our Terms and Privacy Notice and to receive email correspondence from us.

PreVeil - Review 2020 - PCMag UK Posted: 15 Apr 2020 05:45 AM PDT We review products independently, but we may earn affiliate commissions from buying links on this page. Popular Posts Digital signage, kiosks take COVID-19 head on - Digital Signage Today Digital signage, kiosks take COVID-19 head on - Digital Signage Today Digital signage, kiosks take COVID-19 head on - Digital Signage Today Posted: 14 Jul 2020 08:59 AM PDT The coronavirus will eventually be controlled, but by the time this happens, employers will have new regimens in place for managing their workforces. Digital signage and kiosks are stepping up to the place to provide these solutions. The workplace revolution has begun. Millions of people worldwide have permanently left the traditional workplace, and those who return are following new procedures such as having their temperature checked and their identity verified. Welcome to the post-COVID-19 workplace. The coronavirus will eventually be controlled, but by the time this happens, employers will have new regimens in place for managing their workforces. There will be hundreds if not thousands of worker monitoring technologies that will make workplaces safer if not also more Read more A Look At Blockchain Smartphones Available Now - I4U News A Look At Blockchain Smartphones Available Now - I4U News A Look At Blockchain Smartphones Available Now - I4U News Posted: 09 Oct 2019 06:19 AM PDT There is probably no one in the world who has not heard of cryptocurrencies. In the past few years, the general public's awareness of the likes of Bitcoin and Ethereum has skyrocketed. This has happened to such a degree that there are literally millions of us using Bitcoin wallets offered by Luno and other well established names in the industry. On the other hand, blockchain is not necessarily that well known and its capabilities maybe a little less. So although we know that blockchain is the basis of cryptocurrencies, many of us know little more than that. Anyways, this technology is extremely adaptable and is being applied to many industries/sectors from health to disaster recovery. So that it will come as no surprise that blockchain is shifting its attention to mobile. This has resul Read more Cloudflare 1.1.1.1 with Warp+: Should you use it? - The Android Soul Cloudflare 1.1.1.1 with Warp+: Should you use it? - The Android Soul Cloudflare 1.1.1.1 with Warp+: Should you use it? - The Android Soul Use This Travel Privacy Router to Secures All of Your Sensitive Information - Gadget Flow Hidden Cam Above Bluetooth Pump Skimmer - Krebs on Security The Role of Evil Downloaders in the Android Mobile Malware Kill Chain - Security Intelligence Information Security: Corporate-Owned Devices Vs Employee-Owned Devices - Security Boulevard Cloudflare 1.1.1.1 with Warp+: Should you use it? - The Android Soul Posted: 26 Nov 2019 01:17 PM PST Contrary to how you've come to know it works when you are on your phone, everything you do on the internet is done using numbers. DNS servers translate these numbers to addresses and you can think of it as the phonebook that kets you browse through the internet. You might be able to access any site from your smartphone or PC, but DNS Read more How to Support Communication Between Your Field Force With Eva Communication Suite - Security Boulevard How to Support Communication Between Your Field Force With Eva Communication Suite - Security Boulevard How to Support Communication Between Your Field Force With Eva Communication Suite - Security Boulevard Posted: 06 Nov 2019 09:46 AM PST Field Force Communication The remote workforce is a crucial element in the growth path of an organization. This field force or remote workforce is comprised of frontline workers who represent the company to the clients or customers, from shopfloors to retail stores, from support centers to factory workshops. And it is undeniably important for the field force or the frontline workers to have the most up-to-date knowledge of your product and business. Mobile device management for frontline workers can hence help to offer a streamlined flow of latest business resources, while reliable mobile devices. Often, one of the most common challenges faced by these frontline workers is not just a lack of reso Read more Why Apple's stunning new iMessage update beats WhatsApp on your phone - Myjoyonline.com Why Apple's stunning new iMessage update beats WhatsApp on your phone - Myjoyonline.com Why Apple's stunning new iMessage update beats WhatsApp on your phone - Myjoyonline.com Posted: 07 Feb 2021 10:49 AM PST WhatsApp's 2 billion users can look enviously at Apple's latest iMessage update, which puts the rival messenger well ahead. Worse, seriously misleading comments from Mark Zuckerberg last week suggest he doesn't understand how far WhatsApp has now fallen behind. If you use WhatsApp on an iPhone, here's why you should be concerned. Somewhat ironically, Apple's iMessage has been notably absent among messengers reporting growth surges as millions reportedly quit WhatsApp.  Ironically, because the public fracas between Apple and Facebook over WhatsApp and iMessage, privacy labels was one of the initial triggers for the backlash with iMessage coming out on top. The reason we're all writing about Read more Here's absolutely every new thing in Samsung OneUI 3.0 - Android Police Here's absolutely every new thing in Samsung OneUI 3.0 - Android Police Here's absolutely every new thing in Samsung OneUI 3.0 - Android Police Posted: 17 Sep 2020 06:49 AM PDT Article Contents When One UI launched about 2 years ago, it was a huge deal. It was the next evolution in Samsung's software design and user experience. When One UI 2.0 launched last year with Android 10, there wasn't a major design overhaul. It was the basic One UI design with the new Android 10 features. This year, that changes. One UI 3 comes with a brand-new UI to match the same one-handed UX that Samsung has been working on for the past few years. It's modern, it's sleek, it looks like Color OS when it was bad. There are a few improvements and a few changes that come to match Android 11 and the one-handed UX, so let's go over those in comparison to One UI 2.5. Quick settings and notifications First things firs Read more How to encrypt & decrypt files, videos, pictures in Android with a few taps - H2S Media How to encrypt & decrypt files, videos, pictures in Android with a few taps - H2S Media How to encrypt & decrypt files, videos, pictures in Android with a few taps - H2S Media Posted: 28 Dec 2018 12:00 AM PST From those beautiful beach selfies to email attachments, our smartphones is the sweet home for all our small and big personal details, and everything else that we love and want to enjoy, while on the go. But we all have that creepy secret hunter friend who will not leave a single chance to get access to our smartphones and try out exploring everything that we don't want them to see. Though we can still stop our friends from accessing those private things on your smartphones by simply not handing our phone over to them, it is not equally easy to stop different apps and online services from accessing the files and other private data on our smartphones. Whatever the case may be, it will really be useful if we can encrypt the fi Read more WhatsApp may soon roll out encrypted chat backups - We Live Security WhatsApp may soon roll out encrypted chat backups - We Live Security WhatsApp may soon roll out encrypted chat backups - We Live Security Posted: 09 Mar 2021 12:00 AM PST While chats are end-to-end encrypted, their backups are not – this may change soon WhatsApp is said to be working to add encryption for chat backups that will allow users to easily secure their conversations when storing them in the cloud. While the company does currently offer end-to-end encryption for messages, calls and other forms of communication, thus making their content visible only to the sender and the recipient, the same protection doesn't extend to the backups, stored on third-party platforms such as  iCloud  and  Google Drive . However, that may change soon according to WhatsApp tipster WABetaInfo, which shared four screenshots of the long-anticipated feature. Two screenshots showcase the iOS version while the rest display what the Android version m Read more Blog - Enterprise Irregulars Blog - Enterprise Irregulars Blog - Enterprise Irregulars Posted: 03 Oct 2010 06:24 AM PDT Blog    Enterprise Irregulars You are subscribed to email updates from "encrypted phone calls,encrypted telephone calls,airwatch android encryption" - Google News . To stop receiving these emails, you may unsubscribe now . Email delivery powered by Google Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States Read more Information Security: Corporate-Owned Devices Vs Employee-Owned Devices - Security Boulevard Information Security: Corporate-Owned Devices Vs Employee-Owned Devices - Security Boulevard Information Security: Corporate-Owned Devices Vs Employee-Owned Devices - Security Boulevard Posted: 25 Nov 2019 11:52 PM PST Information security: Corporate Owned Vs Employee Owned Devices In an era of enterprise mobility, employee flexibility and convenience in terms of working from remote locations and device usage has become a new norm. Although this definitely adds to their productivity and efficiency, but at the same time, companies cannot ignore the threats and risks they pose to corporate information security. The influx of mobile devices and the plethora of platforms in the workplace is making things more complex for companies. Conditions get trickier when employees are allowed to use their own devices at work, whether in office premises or a remote location. This blog will discuss why a company needs to make an informed decision ab Read more Archive August 20248 July 202461 June 202487 May 202481 April 202476 March 202463 February 202445 January 202451 December 202351 November 202331 October 202333 September 202330 August 202331 July 202347 June 202359 May 202367 April 202364 March 202380 February 202354 January 202374 December 202263 November 202254 October 202265 September 202262 August 202271 July 2022168 June 2022201 May 2022166 April 2022115 March 202288 February 2022128 January 2022135 December 2021156 November 2021282 October 2021351 September 2021376 August 2021380 July 2021387 June 2021943 May 20211002 April 2021934 March 20211026 February 2021990 January 20211032 December 2020955 November 20201062 October 20201134 September 20201114 August 20201165 July 20201047 June 2020935 May 20201133 April 20203362 March 20203088 February 20203189 January 20203403 December 20192957 November 20192636 October 20193246 September 20193032 August 20193177 July 20193255 June 2019437 Show more Show less