CipherCloud, the leader in cloud information protection, announces its continued platform innovation for enabling organisations to rapidly adopt cloud applications while protecting their sensitive data, ensuring compliance to policies and regulations, as well as ever growing unauthorised access, external threats and surveillance. Through these advancements, the company continues to extend its technical leadership in cloud information protection by combining the highest levels of cloud data discovery, protection – searchable strong encryption [SSE], tokenisation, and data loss prevention – and activity and anomaly monitoring.
The Discover, Protect, and Monitor platform comes at a time when organisations are sending exponentially more information into the cloud while seeking to overcome data privacy, regulatory compliance and data residency risks.
Built on CipherCloud’s founding commitment, the platform delivers the three critical elements to enable cloud adoption:
- Discover – The first step is discovery. To determine the security controls their data requires, organisations must first identify and classify content that is sensitive, proprietary or regulated before it goes to the cloud. Visibility tools like data discovery provide the actionable intelligence companies need in order to find and apply the right type of protection to comply with regional and industry specific privacy laws.
- Protect – This is the core of any cloud data security strategy. As data privacy requirements escalate, enterprises need security controls that provide robust and granular level data protection to mitigate against compromise without locking out authorised users. By delivering SSE, tokenisation, data loss prevention, key management, and malware detection, CipherCloud enables enterprises to seamlessly extend data protection from on premises to the cloud. Our SSE technology delivers AES 256-bit encryption, the highest commercially available level of encryption while enabling natural language, wild cards and Boolean searches of encrypted data.
- Monitor – This delivers detailed information on all logging, tracking, and auditing of user activities across all cloud applications. Information is aggregated and monitored resulting in the ability to quickly zero-in on violations of policies, identify anomalous patterns, and flag potential security breaches. Examples could include excessive access from locations known to harbour malicious activity or an extreme number of uploads and downloads of data over a short period of time by a particular user indicating malicious intent.
“We continue to raise the bar for cloud information protection,” said Pravin Kothari, founder and CEO of CipherCloud. “The consumption of multiple cloud applications by the enterprise requires security to be in lock step with visibility. We are giving enterprises a coherent strategy and the innovative technologies they need to navigate the many privacy and residency regulations required to conduct business across the globe.”
The CipherCloud platform provides a holistic set of cloud visibility, security and monitoring controls to enable organisations to proactively secure sensitive data and comply with government regulations and industry mandates, including GLBA, PCI, HIPAA and HITECH, the EU Data Protection Act, UK ICO guidance, the Australian Privacy Amendment Act and US State privacy laws.
Key technologies powering the CipherCloud Discover, Protect, and Monitor platform include:
- Cloud Data Discovery –Search existing cloud applications on-demand and discover detailed information about sensitive data, and user activity, extending your corporate DLP policies to the cloud.
- Searchable Strong Encryption – Delivers AES 256-bit encryption, the highest commercially available level of encryption while enabling natural language, wild cards and Boolean searches of encrypted data
- Tokenisation – Enables tokenization – substituting randomly generated values for the original data, which never leaves the enterprise
- Cloud Data Loss Prevention – Supports out-of the box and custom DLP policies that scan, detect and take action to protect sensitive information in any field or document; integrates with existing DLP systems such as Symantec or RSA via the ICAP protocol.
- Cloud Malware Detection – Includes integrated malware protection preventing viruses from spreading with zero-day protection against cloud viruses, spyware, Trojans, bots, rootkits and more.
- Activity Monitoring and Anomaly Detection – Tracks user interactions across multiple cloud applications assure compliance and spot anomalies through detailed security dashboards and reports.
- Robust Key Management – Provides enterprise key management capabilities in compliance with NIST SP 800-57 standards. Multiple key storage options enable keys to be stored securely on the CipherCloud platform or separately on a KMIP-compliant key management server.
- High-performance Scalable Architecture – Delivers near zero latency while supporting the largest number of companies and government agencies with demanding throughput requirements.