Overview
Despite the billions of dollars spent annually on IT security, data theft remains
alarmingly high and is showing no signs of stopping. It is a well known fact that
perimeter defence using Firewall/AAA/IDS/IPS/Antivirus is legacy architecture. Whilst
this type of protection is still required, there is sufficient evidence to suggest
that this type of architecture is just not sufficient to meet the myriad of threats
that confront the typical organisation today. The financial risk and brand damage
in today’s e-based economy means that a company needs to take pro-active steps now.
Security experts in the industry are recommending Enterprise Data Privacy Architecture
to complement existing perimeter defence. So what is this Enterprise Data Privacy
Architecture?
The Enterprise Data Privacy architecture provides you with the ability to protect
only sensitive data fields residing on your IT systems such as Web, Application
and Database Servers. This architecture ensures all sensitive data in storage is
encrypted, and only decrypted when required. The architecture encrypts data as early
as possible - such as at Web servers. The architecture provides many benefits, including
centralisation of encryption keys, separation of duties, granular protection of
sensitive data from such users as DBA’s and Root Users, auditing and logging and
consistent cryptographic interface to any type of application such as those commonly
used in Web, Application and Database servers.
A key benefit of the Enterprise Data Privacy architecture is the protection of any
identified sensitive data from internal rogue employees as well as external hackers.
The same solution also enables an organisation to comply with various data privacy
standards such as PCI DSS 1.1.
Most organisations have experienced the substantial effort and associated cost in
implementing data security. Many companies simply pick the cheapest or the broadest
data security package, hoping that it will encompass all threats and keep the company
secure. Yet, for the same or lesser price, companies could be implementing significantly
more secure and specialised architecture. Pro-active and up-to-date companies know
that traditional perimeter defence is complimented with Enterprise Data Privacy
Architecture. Bring your company into the twenty-first century, and contact Randtronics
today.
De-perimeterisation
De-perimeterisation is a concept that reflects the need for data privacy architectures.
More details about this can be found at the Jericho Forum, an international IT security
group that is addressing the need of de-perimeterisation within the industry.
Read the following articles
Website Links
|
|
Contact Us |
|
For more information about this product feel free to Contact
Us for a free WebEx
|
|
Data Privacy Product Solutions |
Randtronics
offers a full suite of leading edge cryptographic products to provide data privacy
within your enterprise architecture
Click Here to view our product range.
|
|