Encryption for compliance at ISRM 2009
At the ISACA Information Systems Risk Management Conference in Las Vegas this month, I'll be giving a talk there entitled "Encryption for Compliance: Challenges and Solutions" from 11:00 a.m. to 12:30 p.m. on Tuesday, September 29. It's advertised as being an advanced session, targeted at experienced IT security professionsals, so I'll be assuming that people showing up know the basics of encryption, etc.
It should be an interesting talk, and if you come to it, you'll almost certainlty learn something new about encryption and using it to be regulatory compliant. In addition to the obvious stuff about encryption and its challenges, I'll be talking about the trends in laws and regulations that cover protecting personally-identifiable information. I'll probably throw in something about Landauer's principle and why it's not feasible to crack a 256-bit key, also.