Cybersecurity experts from CipherCloud, STEALTHbits Technologies, and Virsec today commented on the ENCRYPT Act (Ensuring National Constitutional Rights for Your Private Telecommunications), that would preempt state and local government efforts. The billwas introduced yesterday by Reps. Ted Lieu (D-Calif.), Mike Bishop (R-Mich.), Suzan DelBene (D-Wash.) and Jim Jordan (R-Ohio), to create a single, standardized national policy.
Anthony James, CMO at CipherCloud:
Despite the noble objective of nationally standardized encryption in support of law enforcement and counter-terrorist activity, the use by government of forced disclosure, whether at the state level or the federal level, can move the control of your data into someone else’s hands. “Back doors,” or special API’s that access your data at various points of being used within applications, can also easily circumvent basic protection such as “at rest” encryption for your databases.
The only way to maintain firm control over your confidential data is to implement Zero Trust end-to-end encryption. This level of protection, for example, will not allow anyone using a backdoor into one of your 3rd party provided cloud applications to access your data without your explicit knowledge, and approval. Only your decision to deliver your data encryption keys to the requesting party will expose the data.”
Gabriel Gumbs, Vice President of Product Strategy at STEALTHbits Technologies:
.
Willy Leichter, Vice President of Marketing at Virsec:
The opinions expressed in this article belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.