Thales Expands Vormetric Application Crypto Suite Capabilities to Guard Against Data Breaches and Address Compliance Issues
New Features Help Enterprises Easily Implement Application-Layer Data Protection
Thales, a leader in critical information systems, cybersecurity and data security, announces new capabilities for its Vormetric Application Crypto Suite to help enterprises more broadly adopt and manage application-layer data protection. Through the Vormetric Application Crypto Suite, customers are able to streamline the effort to add encryption, tokenization, masking and other cryptographic functions to their applications providing the strongest protection for sensitive data and a fast path to achieving privacy and regulatory compliance.
@thalesesecurity Vormetric Application Crypto Suite capabilities expanded to guard against data breaches and address compliance issues. Demo at #RSAC Booth 6183 North Expo
Reduce Risk While Delivering Compliance
As the 2019 Thales Data Threat Report – Global Edition revealed, 60% of organizations say they have been breached at some point in their history, with 30% experiencing a breach within the past year alone. The best practice for reducing the risk of data breaches and to meet strict compliance standards is for organizations to protect data within the application that generates or processes it.
By adopting security at the application-layer, data is protected as it leaves the application, traverses networks, and is stored in databases. This ensures data is worthless to the hacker because it is encrypted. Many organizations are challenged to add this level of data security to their applications because they do not have the cryptography expertise.
Streamline Development and Meet Compliance Faster
Vormetric Application Crypto Suite gives developers the tools they need to add these capabilities to their applications through simple to understand APIs. By leveraging sample code and APIs that are designed for their environment, developers have a more efficient process and are able to save time. To create a separation of duties between the development and security teams, this solution is part of the Vormetric Data Security Platform, and key management is provided by a FIPS 140-2 hardware or virtual Vormetric Data Security Manager appliance. This separation of duties brings an even greater level of protection for customers.
Flexibility to Adopt the Right Solution to Encrypt Everything
Vormetric Application Crypto Suite encompasses a comprehensive and growing family of application-layer data protection products. It provides access to data protection services for the widest range of operating environments, including public cloud, private cloud, big data and micro-service environments.
New features to the full suite of products within the Vormetric Application Crypto Suite include:
- Enhancements to Vormetric Protection for Teradata Database, enabling identity-based column level access controls;
- Vormetric Application Encryption integrations with the HIVE big data query engine;
- Vormetric Application Encryption can now be a Microsoft CNG key storage provider and offer key management for Microsoft SQL Always Encrypted; and,
- Vormetric Tokenization Server, a virtual appliance, with support for Google Cloud Platform and Microsoft Hyper-V.
Xiaochen Guo, head of IT at Planet of finance says:
“Planet of finance’s professional members collectively manage USD 15 trillion of assets, so security at the highest level is crucial for us. Additionally, we are subjected to a wide range of regulatory requirements. The Thales solution is architected in a way that delivers the level of security sophistication we need, but without adding unnecessary complexity or overhead, especially as our infrastructure is almost entirely cloud based. We have been able to scale quickly, remain flexible and offer impenetrable security to our clients.”
Tina Stewart, vice president of market strategy at Thales eSecurity says:
“Our customers are faced with decisive moments every day, so it is imperative that they are able to rely on the highest levels of data security to handle these moments with confidence. Enterprises must be able to streamline what can often be a difficult process to add encryption at the application layer, so they are able to address complicated and changing compliance issues with the utmost assurance and ease.”