Mobile encryption options for mobile devices: Built-in vs. manual encryption

Mobile encryption options for mobile devices: Built-in vs. manual encryption

What are the advantages of built-in encryption on mobile devices vs. manual encryption? Is one a more secure method than the other?

    Requires Free Membership to View

    Login

    SearchSecurity.co.UK members gain immediate and unlimited access to breaking UK industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.co.UK today!

    Michael S. Mimoso, Editorial Director

    By submitting your registration information to SearchSecurity.co.uk you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.co.uk is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

It depends on what you mean by "built-in" versus "manual" mobile encryption methods. If manual encryption means relying on the user to encrypt data manually, then we are introducing a dependency on user behaviour. This definition of manual encryption, while quite common, is fraught with potential errors. For example, if a user is in a hurry or forgetful, he or she could fail to encrypt something, rendering efforts to protect mobile data useless.

By contrast, if "built-in" encryption methods mean properly configuring automatic encryption that comes included with the mobile device itself, it will tend to minimise human error in most cases. However, it should be noted that there are few true "built-in" encryption products: really only Microsoft BitLocker on newer Windows-based computers and some self-encrypting hard drives and USB sticks. Yet implementing full disk encryption with boot-time authentication on a laptop, for example, will offer good security with minimal user intervention. Hard disks and USB drives with built-in encryption also combine security with ease of use, which is a winning combination.

It's not about the quality of the encryption algorithm (assuming you are using a well-proven product) but about user education and authentication. Good quality passphrases (or two-factor authentication) coupled with a proven encryption product will offer the best possible data protection outcome.

This was first published in May 2010

Back to top