OOPS! The correct answer is "Comply with privacy and data security regulations and requirements"

Complying with privacy and data security regulations and requirements is increasingly important in today’s online, global culture. In fact, 55 percent of respondents in Ponemon’s survey ranked it as their top driver for adopting encryption technology. Not far behind, 51 percent of respondents see protecting enterprise intellectual property as the main driver. In the U.S. alone there are roughly 20 data security laws, such as HIPAA, FISMA, and the Graham-Leach-Bliley Act. The upcoming European General Data Protection Regulation (GDPR), a new law in the EU, will require notifying the relevant authorities within 72 hours of discovering a personal data breach, and, in cases where the information is sensitive or could cause significant damage, notifying every data subject affected by the breach. Some countries already have similar laws in place. Lack of compliance can result in huge fines or, worse, prosecution. Under the GDPR, the maximum penalties for a personal data breach will increase from the current cap of €500,000 to €10,000,000 or two percent of total worldwide annual turnover, whichever is higher. These fines are changing the way companies look at data security, especially in consumer-focused businesses such as banking, healthcare, and retail.

OOPS!

The extensive use of encryption varies considerably by industry segment. Specifically, heavily regulated industries such as financial services and healthcare have the highest use rate; less-regulated industries such as manufacturing and consumer products have the lowest use rate. The healthcare industry was the hardest hit during 2016 in terms of the number of data breaches, accounting for more than one quarter (27.5 percent) of all breaches. Trends over the past four years suggest a steady increase in all industry segments. The most significant increases in extensive encryption usage occur in the public sector, retail, and technology and software organizations.

Source: 2017 Ponemon Study, http://breachlevelindex.com/

OOPS!

Data-at-rest and data-in-flight encryption, as well as server and database security, are key components of a holistic strategy to protecting data. Data in transit, in particular, is becoming more important given the extensive and increasing use of the cloud and the volume of data being moved around the globe. Fiber-optic cables carry hundreds of gigabits of confidential traffic every second, but are often unguarded and easily accessible, making them vulnerable to data breaches. Anyone with a few readily available tools and the help of a YouTube video could infiltrate them. Encrypting in-flight data to secure communications across fiber-optic cables eliminates gaps within data security strategies.

OOPS!

High latency, costly application-specific hardware, bandwidth inefficiency, and complicated key management are significant downfalls of traditional encryption solutions. As a result, companies are deploying new optical encryption solutions for 10G, 100G, and beyond to cost-effectively secure all in-flight data, without impacting performance, no matter the application or protocol. For example, Ciena’s WaveLogic Encryption solutions integrate directly onto the transport network for cost optimization, deliver ultra-low latency and wire-speed data throughput, are always ON and protocol-agnostic, and offer simplified key management that is fully controlled by the end-user.

OOPS!

These are all key elements of a highly secure optical encryption solution. Third-party-certified encryption for in-flight data offers assurance that records will not be breached, even by the best hackers. Ciena’s WaveLogic Encryption is validated externally and independently certified by a third party to ensure it is implemented with industry-standard algorithms and advanced security features. It features a FIPS-certified AES-256 encryption engine leveraging the highest-security cryptography algorithms available today, including Elliptic Curve Cryptography (ECC) algorithms. Although the ability to turn encryption on or off may seem like added flexibility, simple human error can result in sensitive traffic being sent over the network unencrypted. Ciena’s WaveLogic Encryption solution encrypts all network traffic at all times, ensuring the highest level of security. For enhanced data protection, the solution is designed with two distinct and independent sets of keys for authentication and data encryption functions, with a fast encryption key rotation interval of seconds instead of minutes, making it even more difficult for a hacker to access information.