Story image

Gemalto integrates encryption solutions with Google Cloud

07 Dec 2017

Gemalto’s SafeNet Data Encryption solutions are now fully integrated with Google Cloud Platform to give users what it says is more control over their data in the cloud.

Google customers are able to use SafeNet to manage and maintain control of their encryption keys on cloud platforms.

Gemalto’s SafeNet Luna Hardware Security Module (HSM) and SafeNet KeySecure both support Google Cloud Customer-Supplied Encryption Key (CSEK) feature, so customers can manage their keys for data and workloads in Google Cloud Storage and Compute Engine.

According to the Hosting and Cloud Study 2016 by 451 Research, at least one third of the 1700 polled organisations work with four or more cloud vendors.

Gemalto says that if organisations have the ability to control all data encryption and key management operations for all cloud service providers, this ensures companies have total control of their encrypted data.

“Many cloud service providers are offering variations of flexible key management such as bring-your-own-key (BYOK) and hold-your-own-key (HYOK).This is a big step in helping organisations leverage the growing number of cloud-based applications and services, while maintaining full control of their encryption keys across all of the cloud providers they use,” explains Todd Moore, senior vice president of encryption products at Gemalto.

Organisations that integrate with Google’s Customer-Supplied Encryption Key functionality can use an on-premise SafeNet Luna HSM to generate, manage and retain complete control of keys to secure sensitive data on Google Cloud Platform.

Companies can also choose what level of key ownership and control is desired when migrating operations, workloads and data to Google Cloud Platform.

Gemalto says its SafeNet data encryption solutions make it easy to work across multiple clouds by centralising encryption and key management allowing organisations to:

  • Gain visibility and control to consistently and effectively enforce security controls
  • Simplify monitoring and auditing of encryption and key management operations to demonstrate compliance with internal policies, industry standards like Payment Card Industry Data Security Standard (PCI-DSS) or HIPAA and government mandates like Europe’s General Data Protection Regulation (GDPR)
  • Reduce the burden on IT to manage multiple security services across each cloud platform

Last month Gemalto launched SafeNet Data Protection on Demand.

“The platform's cloud neutrality model also brings speed, agility and flexibility for users to deploy the data security services they need in minutes with flexible pay-as-you-go pricing,” comments Gemalto enterprise and cybersecurity executive vice president Sebastien Cano.

Gemalto says that SafeNet Data Protection On Demand makes enterprise-grade data protection accessible to companies of all of sizes.

Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
Alcatraz AI to replace corporate badges with AI security
The Palo Alto-based startup supposedly leverages facial recognition, 3D sensing, and machine learning to enable secure access control.
Unencrypted Gearbest database leaves over 1.5mil shoppers’ records exposed
Depending on the countries and information requirements, the data could give hackers access to online government portals, banking apps, and health insurance records.
Mozilla launches Firefox Send, an encrypted file transfer service
Mozille Firefox has launched a free encrypted file transfer service that allows people to securely share files from any web browser – not just Firefox.
Ransomware’s decline equals cryptomining’s rise
ESET’s Security Days Conference recently took place to go over the current threat environment and what to look out for next.
IoT and DDoS attacks: A match made in heaven
A10 Network’s Adrian Taylor uses findings from a number of reports to illustrate his point that advances in technology are facilitating cybercrime.
ForgeRock launches Sandbox-as-a-Service to facilitate compliance
The cloud-based testing environment for APIs enables banks to accelerate compliance with Open Banking and PSD2 deadlines.
Cloud application attacks in Q1 up by 65% - Proofpoint
Proofpoint found that the education sector was the most targeted of both brute-force and sophisticated phishing attempts.