|
|
 | ||
| ||
|
|
|
News < Back Sarbanes Oxley : Technology : Security Innovation Eases Compliance Chores, Provides Enhanced Database Security May 6, 2009 03:30 PM Protegrity Awarded Patent on Advanced Encryption Key Rotation Method
United States Patent 7,490,248, developed by Protegrity’s Chief Technology Officer Ulf Mattsson, delivers a continuous process for rotating encryption keys in relational databases, ensuring that initial encryption, real time updates and on-demand key changes will occur according to an enterprise’s specifications and without having to take business mission-critical systems offline. “With this patented technology, Protegrity customers gain another practical layer of control over enterprise-wide data security and a powerful new way to secure their databases,” said Mattsson. Key management is the foundation of any solid encryption implementation. Unless an organization establishes a systematic approach to generate, rotate and store its keys, its encryption activities will be largely futile. Unfortunately, while data encryption itself can be reasonably easy to achieve, efficient management of encryption keys across their lifecycle continues to be problem for many enterprises. A poorly implemented rotation process can create new data security vulnerabilities and may make critical data inaccessible even to authorized users. Protegrity’s patented solution enables the process to be fully automated by way of metadata associated with each key’s ciphertext and supports both re-encryption of all historical data with the new key or the preference to leave historical data encrypted with previous keys untouched. Encrypted items are assigned key life values which define the time period in which a key is valid. When the value expires the key is rotated and all associated data is either automatically re-encrypted -- or any new data is automatically encrypted going forward -- using the new key value. Annual rotation of encryption keys is required by data security regulations such as PCI DSS while security best practices indicate that rotation should be performed far more frequently. (The PCI Security Standards Council has indicated more frequent rotations will be required in a soon-to-be released revision of the standard). “Protegrity provides data security solutions for real world corporate needs. This new patent once again demonstrates our commitment to innovative technologies that reduce the cost and complexity of meeting data security challenges,” said Gordon Rapkin, Protegrity CEO. Protegrity delivers centralized data security management solutions that protect sensitive information from acquisition to deletion across the enterprise. Protegrity’s customers maintain complete protection over their data and business by employing software and solutions specifically designed to encrypt data, safeguard web applications, and manage and report on security policy. The company’s singular focus is on developing solutions that protect data. Protegrity employees are security technology specialists with deep expertise in encryption, key management, web application firewalls and security policy in distributed environments. Maximize security with minimal business impact with Protegrity’s Defiance® Suite, the high performance, transparent solution optimized for the dynamic enterprise. 
|
|
|
||||||||||||||||
 | ||||
| ||||
| ||||
|
© 2009 Simplex Knowledge Company. All Rights Reserved. | TERMS OF USE | PRIVACY POLICY |
