The proposed general data protection regulation follows a similar theme of being technology agnostic, apart from one particular part of privacy and security. There is nothing new about encryption: it’s been the basis of secure communication for decades, but in the future of European data protection, this was only method of technology mentioned.
Yet it continues to be a problem for businesses and is all too often missed out and this has resulted in breaches – see the TalkTalk breach as an example. Also in the IoT there seems to be a crucial missing part that is encrypted communications – is your fitness accessory, child’s toy or ISP deploying encryption?
In this webinar we will look at encryption deployment problems, what the EU is proposing and will ultimately demand in terms of security and privacy, and offer best practice recommendations for a decent experience for all.
Key takeaways:
- What does the GDPR say about encryption?
- Is encryption doing enough, or even anything at all? If not, why not?
- What are the available libraries, how can you know if they are free from major bugs?