Secure intellectual property, comply with privacy and regulatory mandates
With Thales eSecurity's data encryption security solutions, you can gain the capabilities you need to encrypt and secure sensitive data in databases, while avoiding the challenges traditionally associated with database encryption. Thales’ database encryption solutions can help protect your growing database environment from both internal and external threats - on-premises or in the cloud, whatever databases you run.
Enterprises have often suffered from performance issues when implementing poorly designed or inefficient database encryption tools, impacting end users and applications that rely on real-time access to data.
Database encryption tools built with inadequate security expose the organization to fraud and data breaches. For example, when key management is handled within the database, the DBA has control of both the data and key. Database encryption solutions also often disregard insider abuse and advanced persistent threats, allowing an attacker the time needed to find and expose vulnerabilities.
As the database environment expands, so do the key management challenges. Using multiple key management tools is complex and creates more opportunities for errors and fraud. While database vendors offer key management functionality, this only works when the enterprise uses that vendor's specific databases.
Vormetric Transparent Encryption offers the capabilities you need to employ strong database encryption, with minimal effort and performance implications. With Vormetric Transparent Encryption, you can secure sensitive data in databases across your enterprise, whether you’re running Oracle, IBM DB2, Microsoft SQL Server, MySQL, Sybase, NoSQL environments, or any combination thereof.
For organizations that need to apply more granular encryption, including at the column or field level within databases, Thales offers Vormetric Application Encryption. Vormetric Application Encryption simplifies the integration of encryption into existing corporate applications and features standard-based APIs, which are used to perform cryptographic and key management operations. Users can choose between standards-based AES encryption and scheme maintaining format preserving encryption (FPE).
For environments that require higher levels of security, nShield hardware security modules (HSMs) deliver FIPS-certified protection for your database keys. Whether you’re using the Thales eSecurity DSM 6100 with an embedded nShield Solo or a stand-alone nShield HSM, nShield helps you meet your needs for high assurance security and compliance. With three different form factors, nShield HSMs serve environments ranging from desktop databases, to single-server databases, to database applications distributed across a network—all while safeguarding keys in a hardened solution.
Thales database encryption solutions are highly scalable and offer protection of your database environment without compromising performance. Our database encryption has been field-tested in the most performance-intensive environments, with proven scalability to support 50,000 cryptographic transactions per second.
Thales enables database encryption without having to make changes to your applications, infrastructure, or business practices, and makes it simple to extend application-layer encryption across virtual, cloud, big data and traditional environments.
The security intelligence built into Vormetric Transparent Encryption provides vital insights needed to track and demonstrate compliance with mandates such as HIPAA, PCI DSS, GLBA, SOX and others.
In today’s enterprises, databases house some of the most highly sensitive, tightly regulated data—the very data that is sought after by malicious insiders and external attackers. To safeguard against the kinds of database attacks that have dominated security headlines recently, organizations are increasingly implementing strong database encryption strategies.
Download this solution brief to learn how Thales can help you protect your critical data against both insider and external threats.
Download
A recent analysis by Aberdeen of database installations at large enterprises revealed a high level of complexity based on the number of database types, vendors, platforms and deployment models. Download the Knowledge Brief to learn more and to understand why a common platform for database encryption is so valuable.
Download
Microsoft SQL Server and Oracle Database solutions provide native transparent database encryption (TDE) that protects the data stored in their customers’ databases. Managing the TDE keys presents challenges such as isolating them from the assets they protect and storing them securely. Thales key management solutions centralize key management for Microsoft SQL Server and Oracle Database, providing greater command over the keys while increasing data security.
Download
Vormetric Transparent Encryption delivers data-at-rest encryption, privileged user access controls and security intelligence logs to proactively meet compliance reporting requirements for structured databases and unstructured files. With Vormetric Transparent Encryption, IT and security professionals can efficiently safeguard more data, in more environments, and against more threats as sensitive data moves into cloud deployments, big data platforms, virtualized systems and more.
Download
Vormetric Application Encryption reduces the complexity and costs associated with meeting this requirement, simplifying the process of adding encryption capabilities to existing applications. This architecture paper goes into detail of the security model, best practices, APIs, and offers a sample application encryption library.
Download
Vormetric Encryption delivers what we need it to do – without any fuss or drama – knowing it’s in place is one less thing to worry about.Albert AvilaBusiness Solutions Specialist, Fujitsu America, Inc.
As a global payment solutions and commerce enablement leader, Verifone’s strategy is to develop and deploy “best in class” payment solutions and services that meet or exceed global security standards and help our clients securely accept electronic payments across all channels of commerce. We selected Thales HSMs to provide robust security, unmatched performance and superior scalability across… Joe Majka,Chief Security Officer
The Vormetric solution not only solved all of our encryption needs but alleviated any fears of the complexity and overhead of managing the environment once it was in place.Joseph Johnson,chief information security officer CHS
My concern with encryption was the overhead on user and application performance. With Thales eSecurity, people have no idea it’s even running.Karl MudraCIO
Delta Dental of Missouri
Vormetric’s approach of coupling access control with encryption is a very powerful combination. We use it to demonstrate to clients our commitment to preserving the security and integrity of their test cases, data and designs.David VargasInformation Security Architect
Cadence Design Systems
Implementing Vormetric has given our own clients an added level of confidence in the relationship they have with us; they know we’re serious about taking care of their data.Audley Deansenior director of Information Security,
BMC Software
There is absolutely no noticeable impact on the performance or usability of applications. I am very excited at how easy the solution is to deploy and it has always performed flawlessly.Christian MuusDirector of Security for Teleperformance EMEA
Thales eSecurity is our standard. Whenever an encryption solution is needed, the answer is always, ‘let’s start with Thales eSecurity.Damian McDonaldVice President of Global Information Security, Becton, Dickinson and Company
