The headlong stampede of enterprise data into the cloud has passed by.
A few years ago I might have written it was ‘underway,’ but this would grossly understate the situation. Data which was once stored on premise has left the building, the twinkling lights on the tin box in your racks are slowly blinking out. Data osmosis is taking place, draining life force from these antiquated shells into vast data-centres run by some of the largest companies on earth. It is more than a trend. It is just reality.
So as a million barn gates are slammed, the new question on everyone’s lips is one of security. How do we keep that perfectly curated company data safe when prying eyes hidden in a world of VPNs, bulletproof hosting and dark forums are watching? In this world, encryption is often touted as a saviour. People have been given hope by a technique shrouded in a complex veil of military nomenclature and supported by brain melting numbers, with billions of possible variations.
I’m not here to criticise encryption. It brings a level of complexity that is good in many respects as it makes things harder for threat actors. Encrypted data is more secure than unencrypted data, as long as keys are stored separately and updated on a regular basis. Fact. Google agrees, and that is often a good sign. Low frequency access to data at rest will be well served by encryption because access is not required often, and it is hard to do.