While moving to the cloud can enable flexibility and cost savings, the ability for a third party to access plain text data presents organizations with new security challenges like:
Vaultive and Gemalto provide a solution to fill in cloud security gaps by integrating Vaultive’s Cloud Security Platform with Gemalto’s SafeNet KeySecure and SAS. This joint solution allows organizations to encrypt SaaS application data before cloud exposure while securely protecting their encryption keys in a centralized location. It also enforces continuous authentication post-login when users perform potentially risky actions or access sensitive data – the Vaultive platform can detect this and invoke SAS to re-authenticate or step-up authentication.
Even with native security features like bring your own key (BYOK), cloud service providers still require access to your keys in order to preserve application functionality. While this approach can reduce risk, it doesn’t completely solve advanced security use cases such as blind government data requests and insider threats.
Vaultive’s integration with SafeNet KeySecure supports the following deployment options for storing encryption keys on a KMIP-based server:
Improved Cloud Data Security
Best-practice methods ensure data is encrypted at the boundary of an organization’s protected network, and IT teams retain exclusive control and management of encryption keys
Continuous Cloud Authentication
Provide contextual access controls by enforcing two-factor authentication based on user behavior in SaaS applications.
Easy Management and Consolidation
An integrated solution for both cloud encryption and key management reduce the cost and effort of securing multiple cloud services and managing the keys for disparate security solutions.
Multiple Deployment Approaches
Manage and deploy encryption keys in physical, virtual, and public cloud environments.
Flawless User Experience
Patented processes preserve characteristics of the data so that it can be indexed, searched, and sorted while remaining encrypted, with no end user training or action required.
Sole Ownership of Encryption Keys
Using the Key Management Interoperability Protocol (KMIP) standard, SafeNet KeySecure can centrally manage the data owner’s keys.