Home / Blogs

Remote Work Demands Encryption

Protect your privacy:  Get NordVPN  [ Deal: 73% off 2-year plans + 3 extra months ]
10 facts about NordVPN that aren't commonly known
  • Meshnet Feature for Personal Encrypted Networks: NordVPN offers a unique feature called Meshnet, which allows users to connect their devices directly and securely over the internet. This means you can create your own private, encrypted network for activities like gaming, file sharing, or remote access to your home devices from anywhere in the world.
  • RAM-Only Servers for Enhanced Security: Unlike many VPN providers, NordVPN uses RAM-only (diskless) servers. Since these servers run entirely on volatile memory, all data is wiped with every reboot. This ensures that no user data is stored long-term, significantly reducing the risk of data breaches and enhancing overall security.
  • Servers in a Former Military Bunker: Some of NordVPN's servers are housed in a former military bunker located deep underground. This unique location provides an extra layer of physical security against natural disasters and unauthorized access, ensuring that the servers are protected in all circumstances.
  • NordLynx Protocol with Double NAT Technology: NordVPN developed its own VPN protocol called NordLynx, built around the ultra-fast WireGuard protocol. What sets NordLynx apart is its implementation of a double Network Address Translation (NAT) system, which enhances user privacy without sacrificing speed. This innovative approach solves the potential privacy issues inherent in the standard WireGuard protocol.
  • Dark Web Monitor Feature: NordVPN includes a feature known as Dark Web Monitor. This tool actively scans dark web sites and forums for credentials associated with your email address. If it detects that your information has been compromised or appears in any data breaches, it promptly alerts you so you can take necessary actions to protect your accounts.

Now that we are all working from home (WFH), the need for encryption must also increase in priority and awareness. Zoom’s popular video conferencing solution got in hot water because they promised “end-to-end” encryption but didn’t deliver on it—prompting some organizations to ban it from use altogether. Encryption protects confidential information from being exposed in transmission, providing a secure way for the intended recipient to get the information without snooping by others.

Corporate data use is commingled with personal data use in WFH environments, emails and chat sessions are mixed with e-learning, volunteering, medical appointments and tax transactions. This potent combination of data leaving our devices from home makes an attractive target for criminals or snoops. This increased dependency on the Internet spotlights the myriad ways we expose data. Encryption should be deployed to help protect both corporate and personal data use.

The data assets of organizations are especially at risk. New (often personal) devices from new IP addresses are accessing networks that require verification and authorization. (More on this in an upcoming blog post.) Further, known and unknown bad actors are working hard to take advantage of this abundance of data over unencrypted channels and are intercepting confidential information that can be used for anything from social engineering to corporate espionage to rerouting cash to intellectual property theft. A complete shutdown is not an option; remote employees must continue to do the things that keep the organization operating.

Infrastructure providers like Afilias have an additional data layer to protect—the infrastructure that powers the core of the Internet. With an expectation of 100% uptime and zero outages, such providers must perform to an exacting standard on security, availability and interoperability. When the staff of such providers are all WFH, special care must be extended to confidentiality and security. Employees working from home must adhere to some common sense encryption rules. All communications related activities—email, chat, video—use encryption to ensure the confidentiality of your data transmissions. Reputable communication providers will offer encryption to maintain confidentiality.

When it comes to data exchange, only do it in an encrypted environment. For example, don’t attach tax documents in an email, even if you use a password; upload these directly to your preparer on their secure site (be sure and check the address, especially if you are considering clicking a link). For work data/documents, a two-step process is now necessary—first, upload the documents to a secure location within your organization, and then send a link to that location to your colleagues so they can securely download.

Organizations that are dealing with a remote, distributed WFH employee base should increase vigilance of the new challenges raised by a WFH environment. Security and risk teams need to inventory all of the access points and devices and enforce or modify security protocols, e.g., use of hotspots, access from locations without encryption, and use and storage of corporate data on personal devices.

Encryption Tools and Considerations

This handy matrix summarizes what is encrypted, who is responsible and some tools to add encryption.

Matrix summarizing what is encrypted, who is responsible and some tools to add encryption.
RelevanceEncryption Tools and Considerations
End UsersEnterprisesInfrastructure Operators
Written communications (email, chat)• Choose software and apps with end-to-end encryption [BlueJeans, Cisco WebEx, Google Hangouts, Microsoft Teams, etc.]
• Modify privacy settings to your needs
Video conferencing
Personal data exchange (e.g., telehealth, financial, fitness apps)
Domain names and websites• Enable DNSSEC
• Use digital certificates
Cloud Storage and Cloud backup• Utilize best of breed vendors for VPNs, payment processing
Enterprise data exchange (e.g., business information, payment/donor data, employee management)
System reliability management (e.g., software updates, patching)
Infrastructure operations and maintenance• All of the above
• Require encrypted communications for all mission-critical corporate activities
• Increase or modify network threat monitoring given new risk vectors

Encryption used to happen “in the background,” usually handled by your Corporate IT staff. Now that we are all WFH, the responsibility to add appropriate levels of encryption to both maintain confidentiality and to preserve data and credential integrity has dramatically shifted to all of us.

If ever there was a time to learn and execute on encryption, it is now. Success now will make us more flexible and secure in the future.

By Ram Mohan, Chief Operating Officer at Afilias

Mr. Mohan brings over 20 years of technology leadership experience to Afilias and the industry.

Visit Page

Filed Under

Comments

Comment Title:

  Notify me of follow-up comments

We encourage you to post comments and engage in discussions that advance this post through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can report it using the link at the end of each comment. Views expressed in the comments do not represent those of CircleID. For more information on our comment policy, see Codes of Conduct.

CircleID Newsletter The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

Related

Topics

Threat Intelligence

Sponsored byWhoisXML API

IPv4 Markets

Sponsored byIPv4.Global

Domain Names

Sponsored byVerisign

DNS

Sponsored byDNIB.com

Brand Protection

Sponsored byCSC

New TLDs

Sponsored byRadix

Cybersecurity

Sponsored byVerisign