www.Vormetric.com
Vormetric Encryption Architecture Overview
Protecting Enterprise Data at Rest with Encryption, Access Controls, and Auditing
Data is Your Business
Slide No: 2
!Data security breaches are harmful to any organization of any size.
Copyright 2012 Vormetric, Inc. – Proprietary and Confidential. All rights reserved. Slide No: 3
2012 DATA BREACH INVESTIGATION REPORTA study conducted by the Verizon RISK Team with cooperation from global policing agencies.
34% 35%94%
People
Servers People
Devices Servers
Copyright 2012 Vormetric, Inc. – Proprietary and Confidential. All rights reserved.
Protect private and confidential info.
Slide No: 4
Global Compliance
PCI DSS
HITECH Act
UK Data Protection Act
South Korea’s PIPA
And more …
Server Defense-in-Depth Controls
Copyright 2012 Vormetric, Inc. – Proprietary and Confidential. All rights reserved.
Data is Everywhere
Slide No: 5
Unstructured dataFile SystemsOffice documents,PDF, Vision, Audio & otherFax/Print ServersFile Servers
Business Application Systems (SAP, PeopleSoft, Oracle Financials, In-house, CRM, eComm/eBiz, etc.)Application Server
Remote locations & systems
Storage & Backup SystemsSAN/NASBackup Systems
Data CommunicationsVoIP SystemsFTP/Dropbox ServerEmail Servers
Structured dataDatabase Systems(SQL, Oracle, DB2, Informix, MySQL)Database Server
Security & Other Systems(Event logs, Error logsCache, Encryption keys, & other secrets)Security Systems
!Data exists in different formats, states, and locations.Traditional Controls are not designed to secure it.
Copyright 2012 Vormetric, Inc. – Proprietary and Confidential. All rights reserved.
Data Security Simplified
Slide No: 6
TransparentMust be transparent to business processes, end users, and applications
Data type neutral – any data, anywhere
StrongPrivileged users should not have access to sensitive data
Firewall your data – approved users and applications allowed, deny all others.
EfficientSLA, User, and Application performance must remain acceptable
Encryption overhead can approach zero
EasyEasy to Understand
Easy to Implement
Easy to Manage
Copyright 2012 Vormetric, Inc. – Proprietary and Confidential. All rights reserved.
Vormetric Data Security
Slide No: 7
Encryption Agent
Unstructured
Encryption Agent
DatabaseSQL Server
2008 / 2012 TDE
Key Agent
Oracle 11gR2 TDE
Key Agent
Data Security Manager
Vormetric Key Vault
Vormetric Encryption
Vormetric Key Management
Copyright 2012 Vormetric, Inc. – Proprietary and Confidential. All rights reserved.
Vormetric Encryption Architecture
Slide No: 8
Users
Application
Database
OS
File System
SAN, NAS, DAS Storage
FS Agent
Policy is used to restrict access to sensitive data by user and process information provided by the OS.
SSL/TLS
Protect Server Data
Copyright 2012 Vormetric, Inc. – Proprietary and Confidential. All rights reserved. Slide No: 9
DAS SAN NAS VM CLOUD
Log FilesPassword filesConfig FilesArchive
File ShareArchiveContentMulti Needs
Data FilesTransaction LogsExportsBackup
IIS APACHE WebLogic
DB2 Oracle SQL Sybase MySQL
File Servers FTP Servers Email Servers Others
Log FilesPassword filesConfig filesArchive
ERP CRM Payment CMS Custom Apps
We Secure The Data That Runs Your Business
Download Whitepaper
www.Vormetric.com
Vormetric Encryption Architecture Overview
Protecting Enterprise Data at Rest with Encryption, Access Controls, and Auditing
Recommended
