Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cloud Security

CipherCloud Offers Data Encryption for Amazon Web Services

Cloud security vendor CipherCloud announced a new product designed to bring its data encryption technology to Amazon Web Services (AWS).

Cloud security vendor CipherCloud announced a new product designed to bring its data encryption technology to Amazon Web Services (AWS).

With CipherCloud for Amazon Web Services, CipherCloud is taking aim at those seeking to protect data on the Amazon Relational Database Service (RDS) and Amazon’s Redshift data warehousing service. According to CipherCloud, the technology automatically encrypting sensitive information on a field-by-field basis before it goes to the cloud and works with any JDBC-compliant database running on AWS infrastructure.

“Organizations in the public and private sectors are increasingly tapping the cost efficiencies and elasticity of the cloud to meet data storage and collaboration needs,” Pravin Kothari, founder and CEO of CipherCloud, said in a statement. “At the same time, privacy regulations around the world require strong data security and compliance to protect sensitive information from hacks, accidental leaks and surveillance. CipherCloud now makes it easy to add strong encryption to any data going to the cloud, without modifying code, or disabling cloud functionality.”

CipherCloud’s offering is built on AES 256-bit encryption and preserves functionality such as searching and sorting of encrypted fields as well as the format of database fields and the length of encrypted data strings. There is a range of encryption options available, including options for dates, phone numbers, decimal numbers, timestamps, email addresses or structured number strings such as credit cards. The technology also allows organizations to apply security policies on a per-field or per-word basis so that users can customize their approach to data protection.

Customers can also integrate other cloud applications for abilities such as offloading file storage into AWS environments to dramatically reduce costs and avoid storage limitations, according to CipherCloud.

“When combined with access controls through applications, [database encryption] can prevent access by administrators or unauthorized users,” Gartner analysts Brian Lowans and Eric Ouellet wrote in a report entitled ‘Develop a Storage Encryption Strategy From the Vault to the Cloud‘. “This can be used to protect data fields while in use. This also protects files against loss or theft of the media.”

Written By

Click to comment

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cloud Security

VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.

Application Security

A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.

Application Security

Many developers and security people admit to having experienced a breach effected through compromised API credentials.

Cloud Security

Orca Security published details on four server-side request forgery (SSRF) vulnerabilities impacting different Azure services.

Cloud Security

Microsoft and Proofpoint are warning organizations that use cloud services about a recent consent phishing attack that abused Microsoft’s ‘verified publisher’ status.

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Cloud Security

Cloud Disaster Recovery - Ingredients for a Recipe that Saves Money and Offers a Safe, More Secure Situation with Greater Accessibility