Recently, Ellen Messmer of Network World reported about a survey titled “Encryption in the Cloud” conducted by the Ponemon Institute. The survey polled 4,000 IT professionals in seven countries, including the United States, about encryption practices in the cloud.
Here is a look at some of the stats collected:
- About half of the IT and security professionals asked said they used external cloud-based services for sensitive data.
- As far as how the data is transferred to the cloud, the survey found: 38% of respondents said their organizations rely on encryption of data as it is transferred, 35% responded that they encrypt data before it is transmitted and it remains encrypted in the cloud, and 27% of respondents said they perform encryption within the cloud environment.
- And, the management of encryption keys, 36% manage themselves, 22% allow the cloud provider to manage and 22% use an independent third party as a service provider.
The trend seems to show that storing sensitive data in the cloud is growing. An interesting twist and a contrast to what most believe is that more security-aware organizations are willing to use the cloud for sensitive data and the less security-aware organizations are using the cloud less.