CipherCloud Introduces Cloud Encryption for Amazon RDS and Amazon Redshift
Extends encryption to AWS data warehouse services
LAS VEGAS, NV, November 11, 2013
Today, CipherCloud, a leader in cloud information protection, unveiled CipherCloud for Amazon Web Services (AWS) to enable users to encrypt data on Amazon Relational Database Service (RDS) and Amazon Redshift, AWS’ petabyte-scale data warehouse service.
Customers can benefit from the cost savings and elasticity of cloud-based data storage while assuring compliance for sensitive data with a wide array of encryption options. The solution enables organizations to automatically encrypt sensitive information on a field-by-field basis, before it goes to the cloud, while retaining the encryption key. CipherCloud is compatible with AWS database services, preserving the critical format and operations, such as searching and sorting.
“Organizations in the public and private sectors are increasingly tapping the cost efficiencies and elasticity of the cloud to meet data storage and collaboration needs,” said Pravin Kothari, founder and CEO of CipherCloud. “At the same time, privacy regulations around the world require strong data security and compliance to protect sensitive information from hacks, accidental leaks and surveillance. CipherCloud now makes it easy to add strong encryption to any data going to the cloud, without modifying code, or disabling cloud functionality.”
“When combined with access controls through applications, [database encryption] can prevent access by administrators or unauthorized users,” said Brian Lowans, Principal Research Analyst, Secure Business Enablement group, and Eric Ouellet, Research VP, Security & Privacy group, Gartner. “This can be used to protect data fields while in use. This also protects files against loss or theft of the media.”
The solution maximizes security for the cloud by supporting a wide array of encryption options that can be applied on a field-by-field basis. CipherCloud is extending its comprehensive cloud information protection platform, providing AES 256-bit encryption and customer-retained key management to provide tighter control of data in Amazon RDS and Amazon Redshift. These encryption capabilities enable customers to comply with the latest privacy mandates, including GLBA, PCI, HIPAA, HITECH, UK Data Protection Act, UK ICO guidance, the Australian Privacy Amendment Act and US state disclosure laws.
Additionally, customers can also integrate other cloud applications for abilities such as offloading file storage into AWS environments to dramatically reduce costs and avoid storage limitations. This extends the ability to leverage AWS for real time database needs, such as cloud bursting for structured data (e.g., names, contact details and account numbers) stored in other clouds. The process is transparent to users as CipherCloud seamlessly encrypts and forwards files to AWS for storage while sending a pointer to the file on other applications where the data remains.
Key benefits of CipherCloud for AWS include:
AES 256-Bit Encryption – Built on AES 265-bit encryption, which has been extensively reviewed and tested by independent organizations.
Advanced Function Preservation – Preserves business-critical functionality (such as searching and sorting of encrypted fields) and the format of database fields and length of encrypted data strings, mitigating the costs and complexity of modifying existing databases and applications.
Wide Range of Encryption Options – Specialized encryption options support dates, phone numbers, decimal numbers, timestamps, email addresses, or structured number strings such as credit cards or social security numbers.
Enterprise Key Management – Includes enterprise grade key management in compliance with NIST SP 800-57 standards. Keys can be split between multiple custodians at the enterprise, rotated or expired without affecting legacy data.
High Performance Architecture – Scales to meet increases in transaction volume and usage to meet the most demanding enterprise loads.
Seamless Integration with Amazon Databases – Protects data stored in Amazon RDS and Amazon Redshift as well as integrates with any JDBC-compliant database that runs on AWS infrastructure.
Granular Field Level Protection – Enables security policies to be applied on a granular per-field or per-word basis by users who customize the level of security and search for each data type, supporting both structured and unstructured data.
CipherCloud will be demoing the new offering in Booth 906 at AWS re:Invent 2013 (November 12-15, 2013 at the Venetian) in Las Vegas, NV.
CipherCloud, the leader in cloud information protection, enables organizations to securely adopt cloud applications by overcoming data privacy, residency, security, and regulatory compliance risks. CipherCloud delivers an open platform with comprehensive security controls, including AES 256-bit encryption, tokenization, cloud data loss prevention, cloud malware detection and activity monitoring. CipherCloud’s ground breaking technology protects sensitive information in real time, before it is sent to the cloud, while preserving application usability and functionality.
CipherCloud has experienced exceptional growth and success with over 2 million business users, more than 250 million customer records, in over 10 industries, and with marquee customers around the globe.
The CipherCloud product portfolio protects popular cloud applications out-of-the-box such as Salesforce, Chatter, Box, Google Gmail, Microsoft Office 365, and Amazon Web Services. Additionally, CipherCloud for Any App and CipherCloud for Databases enable organizations to extend data protection to hundreds of third-party cloud and private cloud applications and databases.
CipherCloud, named as SC Magazine’s 2013 Best Product of the Year, is backed by premier venture capital firms Andreessen Horowitz, Index Ventures, and T-Venture, the venture capital arm of Deutsche Telekom. For more information, visit www.ciphercloud.com and follow us on Twitter @ciphercloud.
Director of Corporate Communications
Gartner report, “Develop a Storage Encryption Strategy From the Vault to the Cloud,” July 11, 2013