Encryption is the new postman

Eleanor Dallaway

An experiment carried out by LogicaCMG has revealed results that suggest traditional methods of sending confidential data, such as by post or courier, are subject to more security threats than any other method.

LogicaCMG questioned 30 senior level ISPA attendees taken from a sample of leading ISPs, government bodies and parliamentarians. Almost half of whom confessed to spending over £50,000 per year on courier services. It seems that this is the preferred method for data transportation in the UK, despite being the least economically friendly and according to the LogicaCMG survey, the most susceptible to loss, damage and interception.

The experiment compared seven methods of communication including courier, post, special delivery, fax, email, secure encrypted email, and even carrier pigeons, against a variety of factors including cost, time, condition of arrival and environmental impact. With the unsurprising exception of carrier pigeons, postal services and common courier proved to be the least effective way to send confidential information.

“Traditional methods provide a false sense of security for a lot of businesses, but what the majority don’t realise, and what this experiment illustrates, is that couriers and post can be one of the most risky – and most expensive – forms of transporting confidential information”, says Dave Martin, Managing Security Consultant at LogicaCMG. “Not to mention the effect on the environment with the use of excess paper, fuel and carbon emissions as well as the time it takes to deliver documents and acquire a valid recipient signature.”

Phishing and other internet crime receive a lot of media attention, and people therefore often make the assumption that sending confidential information via the internet is not safe. However, LogicaCMG insist that it is more trusted traditional methods that are leaving businesses open to threat.

Of course, standard email is far from secure or legally binding. Encrypted email however, is the safest method of communicating confidential information with minimal risk, cost and environmental impact, says Martin. Although email is used as the primary form of business communication, people are still not using it to communicate confidential information – and if they are, it is not necessarily secured.

“With online threats on the rise, it is increasingly important that Internet security providers (ISPs) start offering secure email services, especially to business customers. In fact, according to results of a survey of leading ISP providers last month, 93% agreed that banks should provide secure email to customers to help combat the spread of online fraud. What’s confusing is why more businesses haven’t yet adopted the technology”, concluded Martin.