Protegrity Secure.Data F3 with nCipher FIPS 140 validated hardware now available for Microsoft SQL Server 2000.Protegrity, Inc., a Microsoft Certified Partner, has announced the introduction of Secure.Data F3 for Microsoft SQL Server A relational DBMS from Microsoft that is a major component of the Windows Server System. It is Microsoft's high-end client/server database and is closely integrated with Microsoft Visual Studio and the Microsoft Office System. 2000 relational database--a database security solution that combines "out-of-the-box" application transparent software with cryptographic hardware from nCipher, providing enhanced key management capabilities. The Secure.Data F3 solution for Microsoft SQL Server 2000 utilizes nCipher's cryptographic hardware certified to the Federal Information Processing Standard Federal Information Processing Standards (FIPS) are publicly announced standards developed by the United States Federal government for use by all non-military government agencies and by government contractors. (FIPS (Federal Information Processing Standards) A series of publications issed by the U.S. National Institute of Standards and Technology (NIST) that specifies information security guidelines for federal government departments and agencies. ) 140 Level 3--the most widely recognized benchmark for cryptographic security best practices. The integration of Protegrity's Secure.Data software with nCipher's nShield Hardware Security Module (HSM (1) (Hierarchical Storage Management) The automatic movement of files from hard disk to slower, less-expensive storage media. The typical hierarchy is from magnetic disk to optical disc to tape. ) provides customers with a solution to help address stringent government, industry and internal auditing standards for protecting the privacy of sensitive database information against internal and external threats. "The best protected organizations use security software for the highest level of data protection with a secure audit trail and deploy hardware modules for managing encryption The reversible transformation of data from the original (the plaintext) to a difficult-to-interpret format (the ciphertext) as a mechanism for protecting its confidentiality, integrity and sometimes its authenticity. Encryption uses an encryption algorithm and one or more encryption keys. keys," says Scott C. Nevins, president and CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. of Protegrity. "Protegrity Secure.Data F3 for Microsoft SQL Server 2000 is integrated to work seamlessly with application software--allowing for rapid execution and cost-effective security compliance." "Increasing concerns about security and privacy of data have prompted the development of legislation and industry standards, such as VISA CISP CISP Cardholder Information Security Program (Visa) CISP Comitato Internazionale per lo Sviluppo dei Popoli CISP Certified IRA Services Professional (American Bankers Association) , designed to encourage companies to follow tighter security practices," says Stuart Vaeth, director strategic alliances, nCipher. "The integration of nCipher hardware for key management and Protegrity Secure.Data provides a comprehensive approach to enhanced database security helping organizations comply with privacy regulations." Protegrity Secure.Data F3 is a patented database security solution designed for large organizations in the financial services The examples and perspective in this article or section may not represent a worldwide view of the subject. Please [ improve this article] or discuss the issue on the talk page. , health care, insurance, government and e-Business sectors. Secure.Data F3 software is fast and easy to implement (one to three days). Secure.Data automates encryption with a protected audit function that is based on separation of duties for sensitive data in selected database columns. The automated and enforced segregation of duties between DBA's and security officers enables centralized cen·tral·ize v. cen·tral·ized, cen·tral·iz·ing, cen·tral·iz·es v.tr. 1. To draw into or toward a center; consolidate. 2. management of encryption parameters. The Secure.Data F3 solution enhances overall key management by protecting the master key inside the nShield HSM, allowing for the secure generation, storage, disposal, archival and recovery of the master key. This solution takes advantage of nCipher's smart card based key management framework to securely deliver increased scalability. "The protection, audit and segregation for sensitive data at rest within the database are key elements of security because most data remains at rest in databases for more than 90 percent of its life," Nevins says. "A company is vulnerable when its security solutions only focus on perimeter, such as firewalls and networks, and overlook databases." |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion