John H. Robinson, IV wrote:
The person most likely to steal from you works for you. Who are you protectng against, again? With your theory, you need to excrypt to disk. Which is what I said when I said let the application encrypt.
You know what, I hear this canard over and over again but I have yet to see real data about it.
However, let us suppose that this is true. People need a certain amount of access to get their job done. Beyond limiting their access to non-essential areas, there is no further *technical* solution I can apply. So this becomes irrelevant to the encryption discussion.
I know of two companies who had their servers stolen. We're talking break-in, ripped out of the wall, screeching getaway stolen. This was corporate espionage. Why do you believe that someone wouldn't try to get the backup tapes from an outsourced service? It's probably even *easier* with less chance of getting caught. A uniform, a magnetic decal for the ubiquitous white van, and a fake ID would probably get 99.99% of people to hand over their backup tapes.
While these may not be as common as employee theft (and I remain skeptical), the consequences are as bad or worse *and* there is something low cost that I can do about it.
Personally, I think that a stolen laptop is *far* more common than substantive employee theft.
-a -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
