Progress in new technology, driven by the fall in Nand Flash price, has led to a number of small devices that can hold a significant amount of data. The device that epitomises all of these is the USB Flash Drive. In 1999 a 16MB USB Flash Drive cost £50 now a 4GB USB Flash Drive costs only £10.
USB Flash Drives have been a great friend to businesses over the last few years, making it quick and easy to transfer data from one machine to another and to carry work home to finish without needing to haul around a heavy laptop cheap usb sticks. However, with flash drives being able to hold ever growing amounts of data and transfer data faster than ever, USB flash drives are being looked at by some companies as one of their biggest threats to security.
Encryption of USB Drives – Encryption on USB Flash Drive can take one of two forms either a hardware encryption or software encryption. Forms of hard ware inscription may include only allowing access to the USB Flash Drive after the user has authenticated his or her authority using a password, encryption certificate or biometric authentication (most commonly finger print recognition but sometimes also retina recognition). The encryption of storage media can also be managed via software two examples are Microsoft’s Active Directory and Novell’s eDirectory, both can be set up to use certificates to data held on USB Flash Drives.
Restrict access to important files on critical servers – As with all company information access should be given on a need to basis and taken away from employees as soon as they no longer need that access: if you’re going to give someone their notice is it worth letting them have access while they sit it out?
Monitor access of company employees to sensitive files – Just because your employees have access to the data doesn’t mean they have ant rights to do with as they please. Monitoring their behaviour with sensitive data is the best way to spot any unusual pattern and can give you time to act and stop any possible data leaks.