If all data, whether on the desktop or a server, on-site or outsourced, is encrypted - so long as the key creation and recovery process is managed by a non-IT security manager:

• The outsourcer (or internal IT department) sees only encrypted data
• Network administrators (internal or external) can never gain access to data
• The outsourcer (or IT department) can still backup and restore data.
• The Outsourcer (or IT department) can still administrate the infrastructure
• Cross administration becomes so much easier. The outsourcer simply receives a list of users that need access to the storage infrastructure. These users are given read-write access to all data storage areas. If they do not have the appropriate encryption / decryption keys for specific data, they are automatically denied access. The Outsourcer does not need to set-up complex permissions.v
• The Outsourcer never has access to encryption / decryption keys.
• The client company retains complete control over who can see what.

This delightfully simple concept even solves some of the politics between corporate divisions. Let’s face it, it is not uncommon for a division or a country to want to run its own infrastructure rather than sharing a central system, with the associated risk of another division gaining access. No longer a problem!


Armoursoft is a leading data security organisation, specialising in encription and data access solutions. Company web site: http://www.armoursoft.com.