Bloombase and Entrust provide a joint solution to securely protect sensitive information stored across various storage infrastructures. Bloombase uses artificial intelligence to discover and dynamically control access to sensitive data, and encrypts the data using Entrust nShield hardware security modules. The nShield HSMs provide a secure environment for encrypting and managing cryptographic keys to protect the encrypted data according to regulatory compliance requirements. Together, Bloombase and Entrust aim to mitigate data breaches by securing sensitive information stored in both traditional and next-generation data center environments.
Bloombase StoreSafe KMIP
Integration with HPE ESKM
Technology partner solution brief
Bloombase and HPE Security are committed to ensuring
industry-wide interoperability and enabling rapid
deployment of secured business information systems.
Data security to protect pci data flow ulf mattsson - insecure-mag-40Ulf Mattsson
There are innumerable ways that data thieves can attack and penetrate your network. As the saying goes - it’s not if your systems will be breached, but when. Every organization, especially those that handle PCI data, should operate under the assumption that sooner or later, they will be breached.
The new best practices to protect sensitive data and the data flow throughout the enterprise are designed with this assumption in mind. They are about reducing risk of data loss, and responding quickly to attacks when they occur.
First, minimize the amount of sensitive data you collect and store. Some elements, such
as PIN numbers and CVV/CVC codes, are prohibited from being stored, but in general, if you’re not using certain data but you store it anyways, you’re only increasing risk with no returns. If you are using it, or planning to, minimize the number of systems that store or process sensitive data. This will make it easier to protect it, as you will have less to defend. The next step is to implement some sort of data security, as required by PCI DSS regulations. While access controls provide a basic level of protection, they do nothing to protect the data flow, and the PCI council has recognized a need to go beyond them. Data security is applied in one of two ways: coarse-grained security at the volume or file level; and fine-grained security at the column or field-level.
IV Support technologies understands that information management is vital to your business. Precisely why we have implemented a foolproof data backup and recovery plan
Bloombase StoreSafe KMIP
Integration with HPE ESKM
Technology partner solution brief
Bloombase and HPE Security are committed to ensuring
industry-wide interoperability and enabling rapid
deployment of secured business information systems.
Data security to protect pci data flow ulf mattsson - insecure-mag-40Ulf Mattsson
There are innumerable ways that data thieves can attack and penetrate your network. As the saying goes - it’s not if your systems will be breached, but when. Every organization, especially those that handle PCI data, should operate under the assumption that sooner or later, they will be breached.
The new best practices to protect sensitive data and the data flow throughout the enterprise are designed with this assumption in mind. They are about reducing risk of data loss, and responding quickly to attacks when they occur.
First, minimize the amount of sensitive data you collect and store. Some elements, such
as PIN numbers and CVV/CVC codes, are prohibited from being stored, but in general, if you’re not using certain data but you store it anyways, you’re only increasing risk with no returns. If you are using it, or planning to, minimize the number of systems that store or process sensitive data. This will make it easier to protect it, as you will have less to defend. The next step is to implement some sort of data security, as required by PCI DSS regulations. While access controls provide a basic level of protection, they do nothing to protect the data flow, and the PCI council has recognized a need to go beyond them. Data security is applied in one of two ways: coarse-grained security at the volume or file level; and fine-grained security at the column or field-level.
IV Support technologies understands that information management is vital to your business. Precisely why we have implemented a foolproof data backup and recovery plan
The past, present, and future of big data securityUlf Mattsson
ONE OF THE BIGGEST REMAINING CONCERNS REGARDING HADOOP, PERHAPS SECOND ONLY TO ROI, IS SECURITY.
The Past, Present, and Future of Big Data SecurityWhile Apache Hadoop and the craze around Big Data seem to have exploded out into the market, there are still a lot more questions than answers about this new environment.
Hadoop is an environment with limited structure, high ingestion volume, massive scalability and redundancy, designed for access to a vast pool of multi-structured data. What’s been missing is new security tools to match.
Read more in this article by Ulf Mattsson, Protegrity CTO, originally published by Help Net Security’s (IN)SECURE Magazine.
Securing data today and in the future - Oracle NYCUlf Mattsson
NYOUG - New York Oracle Users Group:
- Risks Associated with Cloud Computing
- Data Tokens in a Cloud Environment
- Data Tokenization at the Gateway Layer
- Data Tokenization at the Database Layer
- Risk Management and PCI
Cloud data governance, risk management and compliance ny metro joint cyber...Ulf Mattsson
The rapid rise of cloud data storage and applications has led to unease among adopters over the security of their data. Whether it is data stored in a public, private or hybrid cloud, or used in third party SaaS applications, companies have good reason to be concerned.
In this session Protegrity CTO and data security thought leader Ulf Mattsson will focus on practical advice on what to look for in cloud service providers and a review of the technologies and architectures available to protect sensitive data in the cloud, both on- and off-site. Through real life use cases, Ulf will discuss solutions to some of the most common issues of data governance, usability, compliance and security in the cloud environment.
FORE Solutions is the Chandigarh based best data security solutions provides an entire range of products for infrastructure security and keeping data protected from corruption and unauthorized access. For more details please visit our website www.foresolutions.net
Data centric security key to digital business success - ulf mattsson - bright...Ulf Mattsson
With the exponential growth of data generation and collection stemming from new business models fueled by Big Data, cloud computing and the Internet of Things, we are potentially creating a cybercriminal's paradise where there are more opportunities than ever for that data to end up in the wrong hands. The biggest challenge in this interconnected world is merging data security with data value and productivity. If we are to realize the benefits promised by these new ways of doing business, we urgently need a data-centric strategy to protect the sensitive data flowing through these digital business systems. In this webinar, Ulf Mattsson explores these issues and provides solutions to bring together data insight and security to safely unlock the power of digital business.
Introduction to PKI & SafeNet Luna Hardware Security Modules with Microsoft W...SafeNet
To aid a successful and secure Public Key Infrastructure (PKI) implementation, this article
examines the essential concepts, technology, components, and operations associated with
deploying a Microsoft PKI with root key protection performed by a SafeNet Luna Hardware
Security Module (HSM).
Self-Protecting Information for De-Perimiterised Electronic RelationshipsJeremy Hilton
This presentation describes the results of a project (SPIDER) that has developed a proof-of-concept for fine-grained information access control, and communication of controls using a concept derived from Creative Commons called Protective Commons.
Audit Log Protection: Avoiding a False Sense of SecurityNbukhari
Evolving digital evidence laws, the changing IT landscape and the reliance on audit log data has the is causing financial losses and a false sense of security for organisations
In this presentation we have covered the topic Data Security from the subject of Information Security. Where Data, Data Security, Security, Security Policy, Tools to secure data, Security Overview (Availability, Integrity, Authenticity, Confidentiality), Some myths and Dimensions of System Security and Security Issues are discussed.
The past, present, and future of big data securityUlf Mattsson
ONE OF THE BIGGEST REMAINING CONCERNS REGARDING HADOOP, PERHAPS SECOND ONLY TO ROI, IS SECURITY.
The Past, Present, and Future of Big Data SecurityWhile Apache Hadoop and the craze around Big Data seem to have exploded out into the market, there are still a lot more questions than answers about this new environment.
Hadoop is an environment with limited structure, high ingestion volume, massive scalability and redundancy, designed for access to a vast pool of multi-structured data. What’s been missing is new security tools to match.
Read more in this article by Ulf Mattsson, Protegrity CTO, originally published by Help Net Security’s (IN)SECURE Magazine.
Securing data today and in the future - Oracle NYCUlf Mattsson
NYOUG - New York Oracle Users Group:
- Risks Associated with Cloud Computing
- Data Tokens in a Cloud Environment
- Data Tokenization at the Gateway Layer
- Data Tokenization at the Database Layer
- Risk Management and PCI
Cloud data governance, risk management and compliance ny metro joint cyber...Ulf Mattsson
The rapid rise of cloud data storage and applications has led to unease among adopters over the security of their data. Whether it is data stored in a public, private or hybrid cloud, or used in third party SaaS applications, companies have good reason to be concerned.
In this session Protegrity CTO and data security thought leader Ulf Mattsson will focus on practical advice on what to look for in cloud service providers and a review of the technologies and architectures available to protect sensitive data in the cloud, both on- and off-site. Through real life use cases, Ulf will discuss solutions to some of the most common issues of data governance, usability, compliance and security in the cloud environment.
FORE Solutions is the Chandigarh based best data security solutions provides an entire range of products for infrastructure security and keeping data protected from corruption and unauthorized access. For more details please visit our website www.foresolutions.net
Data centric security key to digital business success - ulf mattsson - bright...Ulf Mattsson
With the exponential growth of data generation and collection stemming from new business models fueled by Big Data, cloud computing and the Internet of Things, we are potentially creating a cybercriminal's paradise where there are more opportunities than ever for that data to end up in the wrong hands. The biggest challenge in this interconnected world is merging data security with data value and productivity. If we are to realize the benefits promised by these new ways of doing business, we urgently need a data-centric strategy to protect the sensitive data flowing through these digital business systems. In this webinar, Ulf Mattsson explores these issues and provides solutions to bring together data insight and security to safely unlock the power of digital business.
Introduction to PKI & SafeNet Luna Hardware Security Modules with Microsoft W...SafeNet
To aid a successful and secure Public Key Infrastructure (PKI) implementation, this article
examines the essential concepts, technology, components, and operations associated with
deploying a Microsoft PKI with root key protection performed by a SafeNet Luna Hardware
Security Module (HSM).
Self-Protecting Information for De-Perimiterised Electronic RelationshipsJeremy Hilton
This presentation describes the results of a project (SPIDER) that has developed a proof-of-concept for fine-grained information access control, and communication of controls using a concept derived from Creative Commons called Protective Commons.
Audit Log Protection: Avoiding a False Sense of SecurityNbukhari
Evolving digital evidence laws, the changing IT landscape and the reliance on audit log data has the is causing financial losses and a false sense of security for organisations
In this presentation we have covered the topic Data Security from the subject of Information Security. Where Data, Data Security, Security, Security Policy, Tools to secure data, Security Overview (Availability, Integrity, Authenticity, Confidentiality), Some myths and Dimensions of System Security and Security Issues are discussed.
Eskm & bloombase integration data security oct 16Bloombase
Bloombase StoreSafe KMIP
Integration with HPE Enterprise
Secure Key Manager (ESKM)
Technology Partner Solution Brief
Bloombase and HPE Security are committed to ensuring industry-wide interoperability and enabling rapid deployment of secured business information systems.
Bloombase integration with eskm final w alliance cert logo 6_11_15Bloombase
Bloombase StoreSafe KMIP Integration with HP Enterprise Secure Key Manager
Technologies that power and accelerate enterprise storage security
Next generation data at-rest encryption and key management solutions from Bloombase and HP Atalla.
Secure Channels financial institution presentation. Featuring solutions using key management. Learn more about our patented encryption by visiting www.securechannels.com
Gemalto is an international digital security company providing software applications, secure personal devices such as smart cards and tokens, and managed services. It is the world’s largest manufacturer of SIM cards.
Visit: http://www.gemalto.com/
Cloud and Virtualization gives you agility and efficiency to instantly roll out new services and expand your infrastructure. But the lack of physical control, or defined entrance and egress points, bring a whole host of cloud security issues – data co-mingling, privileged user abuse, snapshots and backups, data deletion, data leakage, geographic regulatory requirements, cloud super-admins, and many more. Fortunately, experts agree that encryption is the unifying cloud security control, allowing you protect, control and maintain the trust. Gemalto’s proven encryption and enterprise key management solutions turn any cloud environment into a trusted and compliant environment by solving the critical challenges of data governance, control, and ownership - no matter where you store your data.
Andrew Watts-Curnow, Solutions Architect, Amazon Web Services, ASEAN
Sheung Chi Ng, Senior Security Consulting Manager, Identity and Data Protection (IDP), APAC, Gemalto (Formerly SafeNet)
Cloud and Virtualization gives you agility and efficiency to instantly roll out new services and expand your infrastructure. But the lack of physical control, or defined entrance and egress points, bring a whole host of cloud security issues – data co-mingling, privileged user abuse, snapshots and backups, data deletion, data leakage, geographic regulatory requirements, cloud super-admins, and many more. Fortunately, experts agree that encryption is the unifying cloud security control, allowing you protect, control and maintain the trust. Gemalto’s proven encryption and enterprise key management solutions turn any cloud environment into a trusted and compliant environment by solving the critical challenges of data governance, control, and ownership - no matter where you store your data.
Andrew Watts-Curnow, Solutions Architect, Amazon Web Services, ASEAN
Sheung Chi Ng, Senior Security Consulting Manager, Identity and Data Protection (IDP), APAC, Gemalto (Formerly SafeNet)
Additional License Authorizations
For Applications Delivery Management, Enterprise Security, Information Management and Governance, IT Operations Management and Platform software products
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
Let's dive deeper into the world of ODC! Ricardo Alves (OutSystems) will join us to tell all about the new Data Fabric. After that, Sezen de Bruijn (OutSystems) will get into the details on how to best design a sturdy architecture within ODC.
1. LEARN MORE AT ENTRUST.COM/HSM
Bloombase and Entrust
protect storage infrastructure
to mitigate data breaches
Joint solution secures sensitive information in
traditional and next-generation data centers
HIGHLIGHTS
• Discover sensitive information
across data-at-rest resources utilizing
artificial intelligence
• Provide dynamic access control of
structured/unstructured data using
machine learning
• Encrypt heterogeneous storage
and control access to trusted hosts
and applications
• Provide a FIPS 140-2 Level 3 platform
on-premises or as a service for
centralized key management and
security-hardened key protection
• Facilities compliance with data privacy
and security regulations
The problem: sensitive big data
is a prime target for cyber attacks
and data breaches
Organizations capture and store increasing
volume of data, including private and
sensitive data, for advanced analytics and
business intelligence purposes. This big-data
trend, combined with the growing amount
of data generated by Internet of things (IoT)
smart devices, backed by software-defined
Legacy server, UNIX/Linux
server, Windows server,
Virtual machine,
Cloud compute instance
Entrust nShield HSM
Trusted user
SMB, CIFS, NFS,
iSCSI, FCP, FCoE, S3,
REST, HTTP, etc.
Bad
guys
Header
Trailer
Disk array, Filer, VTL, Big
data storage, Windows
storage, Virtualized/HCI
storage, Cloud storage
Trusted
write
and
encrypt
Trusted
read
and
decrypt
CLEAR TEXT
Header
Trailer
^$8Yn+=@~
CLEAR
TEXT
^$8Yn
+=@~
Bloombase StoreSafe secures sensitive information in
traditional and next generation datacenters with Entrust
nShield® HSMs deployed on-premises or as a service.
2. LEARN MORE AT ENTRUST.COM/HSM
data center (SDDC) technologies, highlights
data storage infrastructure as a prime target
for attack. Encryption protects data privacy,
however the techniques used to encrypt
data can vary among software applications
and storage technologies. With diverse
applications deployed across an increasingly
decentralized environment, effectively
protecting the growing volume of sensitive
data is crucial to ensure secure computing
of mission critical applications to achieve
business automation.
The challenge: securing
heterogeneous storage
environments with a holistic
protection approach
Enterprises are migrating from on-premises
disk systems to cloud-based storage
services to better-manage the increasing
need of data capacity. The trend has been
accompanied by a shift from selective
encryption of data classified as sensitive, to
a policy that encrypts everything in storage.
The degree to which organizations can
trust this approach depends directly on the
protection of cryptographic keys. Encryption
keys underpin security, and safeguarding and
managing them is critically important.
As more data gets encrypted, more keys
need to be secured and managed to protect
data in storage and to ensure it can be
decrypted when needed.
The solution: Bloombase and
Entrust together deliver high
performance and enhanced
security to heterogeneous storage
infrastructures
Leveraging artificial intelligence (AI) and
deep machine learning (ML) technologies,
Bloombase StoreSafe provides autonomous
discovery, dynamic access control, and
lifecycle cryptographic protection of
sensitive data-at-rest, both structured and
unstructured, managed in on-premises
storage systems and off-premises cloud
storage services. Its application-transparent
and protocol-preserving features enable it
to protect the entire spectrum of storage
infrastructures from on-premises, to
virtualized, big data repositories, and cloud
storage services. Bloombase StoreSafe
operates as a storage proxy, encrypting data
before it is physically stored, and deciphering
the stored ciphertext on the fly only when
presented to trusted applications and
hosts. The schema guarantees operational
transparency and maximum interoperability,
while ensuring that unauthorized parties are
unable to access the sensitive information
without breaking encryption.
Bloombase customers can leverage
trusted cryptography solutions from
Entrust to facilitate compliance with
regulatory requirements. Depending on
the deployment environment, customers
can integrate Bloombase StoreSafe
with nShield hardware security module
(HSM). nShield HSMs provides a FIPS
140-2 Level 3 environment for tamper-
evident and tamper-resistant protection
of cryptographic keys. Customers can
deploy nShield Connect HSMs on-premises
or as a service to enable compliance with
regulatory requirements for multi-national
business and government agencies.
Why use Entrust nShield with
Bloombase StoreSafe?
Bloombase StoreSafe data-at-rest security
technology coupled with the nShield HSMs
offer an unprecedented combination of a
turn-key, non-disruptive, and application
transparent stored data encryption solution
with a powerful and centralized key
management system for traditional and next-
generation data center environments.
Bloombase and Entrust protect storage
infrastructure to mitigate data breaches
3. Encryption keys handled outside the
cryptographic boundary of a certified HSM
are significantly more vulnerable to attack,
which can lead to compromise of critical
keys. HSMs offer a proven and auditable way
to secure valuable cryptographic material.
nShield HSMs integrate with Bloombase
StoreSafe to provide comprehensive logical
and physical protection of keys.
nShield Connect HSMs enables Bloombase
customers to:
• Secure keys within carefully designed
cryptographic boundaries that use robust
access control mechanisms, so keys are
only used for their authorized purpose
• Ensure key availability by using
sophisticated management, storage,
and redundancy features to guarantee
they are always accessible when
needed by the encrypted storage
systems and services
• Deliver superior performance to support
real-time high-bandwidth storage
cryptographic applications
nShield Connect HSMs provide a hardened,
tamper-resistant environment for performing
secure cryptographic processing, key
protection, and key management. With
Entrust HSMs you can:
• Provide a tightly controlled tamper
resistant environment for safekeeping
and managing encryption keys
• Enforce key use policies, separating
security functions from administrative
tasks
• Interface with applications using
industry-standard APIs (PKCS#11,
OpenSSL, JCE, CAPI, CNG, nCore,
and nShield Web Services when used
in conjunction with Web Services
Option Pack)
Entrust HSMs
Entrust nShield HSMs are among the
highest-performing, most secure and
easy-to-integrate HSM solutions available,
facilitating regulatory compliance and
delivering the highest levels of data and
application security for enterprise, financial
and government organizations. Our unique
Security World key management architecture
provides strong, granular controls over
access and usage of keys.
BLOOMBASE
Bloombase StoreSafe delivers data-at-rest
security for sensitive information managed
in traditional data centers and hybrid
cloud environment. The purpose-built
scalable architecture:
• Protects on-premises storage systems
including SAN, NAS, DAS, tape library,
and virtual tape library (VTL), regardless
of complexity and heterogeneity of the
storage infrastructure and protocol
• Secures data in RESTful cloud storage
service endpoints, hypervisor datastores,
content addressable storage (CAS), and
object stores
• Helps organizations mitigate data
exfiltration threats and meet data privacy
regulatory mandates
www.bloombase.com
Learn more
To find out more about Entrust nShield
HSMs visit entrust.com/HSM. To learn more
about Entrust’s digital security solutions for
identities, access, communications and data
visit entrust.com
Bloombase and Entrust protect storage
infrastructure to mitigate data breaches