"Enterprises are having trouble recovering business information because they are not properly managing the data encryption keys, which effectively lock them out of the critical data they sought to protect ..."
Encryption is no longer an ‘if’ question only a where, how and from whom. In a Symantec survey or 1,575 enterprises they found that "Poor Encryption Key Management Leads to Unrecoverable Data" (which should come as no surprise). Moreover, 40% of these companies did not have confidence in retrieving keys in times of need.
(Get More Information . .)
In the blog "User home directory encryption with ZFS" Darren Moffat demonstrates how to exploit the ability of ZFS encryption to delegate key management to individual users, combined with a PAM module he wrote, to provide per-user encrypted home directories. All the necessary code is included in Moffat's post.
(Get More Information . .)
Oracle's SPARC T4 processors combined with Oracle's Solaris ZFS file system demonstrate faster file system encryption than equivalent systems based on the Intel Xeon Processor 5600 Sequence. With ZFS encryption the SPARC T4 processor is 2.9 to 3.4x faster than the Intel Xeon Processor X5670 that has the AES-NI security instructions in creating encrypted files. ZFS encryption is integrated with the ZFS command set. Like other ZFS operations, encryption operations such as key changes and re-key are performed online.
(Get More Information . .)
"High Performance Security for Oracle WebLogic Applications Using Oracle SPARC Enterprise T-series Server," an Oracle white paper by Ramesh Naqappan, discusses the technical prerequisites, configuration, deployment and verification guidelines for Oracle WebLogic server, Java runtime environment and Oracle Solaris Cryptographic Framework for supporting the cryptographic operations inviolved with encryption/decryption, digital signature, key management functions of SSL and WS-Security application scenarios. The intended audience is the security administrator and Oracle WebLogic administrator charged with deploying and integrating the on-chip cryptographic capabilities of Oracle SPARC Enterprise T-Series servers.
(Get More Information . .)
"Solaris 10 Security Essentials" is a book that one of its co-authors, Darren Moffat of Oracle Solaris engineering, promises that readers will find useful with both Solaris 10 and the forthcoming Solaris 11. In a four minute video with OTN's Rick Ramsey, Moffat. The book, Moffat says, is directed to administrators and explains the tools included in Solaris.
The book’s topics include:
Zones virtualization security
System hardening
Trusted Extensions (Multi-layered Security)
Privileges and role-based access control (RBAC)
Cryptographic services and key management
Auditing
Network security
Pluggable Authentication Modules (PAM)
The book describes how to make installations secure and how to configure the OS to the particular needs of individual environments, whether they are on the edge of the Internet or running a data center.
(Get More Information . .)
News and Solutions for Users of Solaris, Java and Oracle's Sun hardware products
Just the news you need, none of what you don't –
42,000+ Members – 24,000+ Articles Published since 1998
