Provable regulatory compliance!

Secure Cloud

Computing

Secure Cloud

Computing

Secure Cloud

Storage

The first complete security

solution that lets you

take advantage of Public Clouds

while

proving

compliance to

●

Encryption

●

Tokenization

●

Key Management

●

Cryptographic

hardware module

●

Fully integrated

●

Reduce scope of

compliance audits

●

Manage

trillions

of

keys/objects

●

Fully operational in

48 hours or less

FEATURES

BEFORE

KeyAppliance

System-1

Sensitive

Data

11001011010

System-4

Sensitive

Data

11001011010

System-2

Sensitive

Data

11001011010

System-5

Sensitive

Data

11001011010

System-3

Sensitive

Data

11001011010

System-1

Sensitive

Data

11001011010

System-1

Sensitive

Data

11001011010

System-1

Sensitive

Data

11001011010

System-1

Sensitive

Data

11001011010

System-1

Sensitive

Data

11001011010

Scope of PCI-DSS Audit

System-1

Sensitive

Data

11001011010

System-2

Sensitive

Data

11001011010

System-3

Sensitive

Data

11001011010

System-4

Sensitive

Data

11001011010

System-5

Sensitive

Data

11001011010

KeyAppliance

11001011010 11001011010

Scope of PCI-DSS Audit

8 GB DRAM

4 Core

64-bit CPU

certified HSM

Or TPM

Dual Gigabit

Ethernet

Automatic

Key Management

Split-Knowledge

Control

Highly

Available

Enterprise

Scalability

Simple

Webservice API

Active Directory

Integration

Graphical

Admin Console

LOWEST COST EKM

appliance.

GUARANTEED!

ARCHITECTURE

Crypto-Module

Internal DB 6 C/C++ Application Java Application Application Server 2 3 LDAP Server 4 5

Client Applications

7

Key Appliances

Crypto-Module

Internal DB 6 Application Server 2 3 LDAP Server 4 5 RPG Application Ruby/PHP Application

Network

1 7

SECURE CLOUD COMPUTING

E-COMMERCE –

PUBLIC CLOUD

Enterprise

Web

Application

CCN

Name

3

CCN

Token

4

Token

5

1

2

Customer ID

Billing Address

Phone

E-mail address

Order Detail

Customer ID

Name

Credit Card Number

Card Expiry Date

Card Verification Value

Amount

WebApp

Public Cloud

Customer ID

Billing Address

Phone

E-mail address

Order Detail

Token

SECURE CLOUD COMPUTING

E-COMMERCE -

VPDC

Enterprise

Web

Application

CCN

Name

3

CCN

Token

4

WebApp

Customer ID

Billing Address

Phone

E-mail address

Order Detail

Token

VPDC at

provider's

premises

Token

5

1

Customer ID

Name

Credit Card Number

Card Expiry Date

Card Verification Value

Amount

2

Customer ID

Billing Address

Phone

E-mail address

Order Detail

●

Encryption

●

Decryption

●

Key generation

●

Key escrow and

recovery on

StrongAuth

KeyAppliance

●

Automatically transfer

files to public clouds,

VPDC, NAS

●

Reduce cost of

storage infrastructure

FEATURES

Automatic

Key Management

Integration to

Public Clouds

Highly

Available

Enterprise

Scalability

Simple

Webservice API

Active Directory

Integration

Graphical

Interface

FEATURES

Java-based

Free and Open-Source Software

Ciphertext

Public

Cloud or

VPDC

C/C++/C# Application Java Application

Plaintext

5 1 1 2 4

Key

3

Private SAN or NAS

Ciphertext

Public

Cloud or

VPDC

C/C++/C# Application Java Application

Plaintext

1 5 5

Key

3

Private SAN or NAS

DECRYPTION MECHANICS

SECURE CLOUD COMPUTING

HEALTHCARE –

PUBLIC CLOUD

Hospital

Web

Application

PII Keys

2

PII

3

Tokens

7

X-Ray

8

Key

9

Token XENC File

10

5

PII

1

Patient ID Tokens Non-PII Data

XENC File WebApp

6

Lab

Patient ID Tokens Non-PII Data X-Ray Tokens

4

SECURE CLOUD COMPUTING

HEALTHCARE -

VPDC

Patient ID Tokens Non-PII Data

XENC File WebApp

VPDC at

provider's

premises

Hospital

Web

Application

PII Keys

2

PII

3

Tokens

7

X-Ray

8

Key

9

Token XENC File

10

5

PII

1

6

Lab

Patient ID Tokens Non-PII Data X-Ray Tokens

4

SECURE CLOUD COMPUTING

FOR E-COMMERCE

WebApp

Public Cloud

1

Customer ID

Billing Address

Phone

E-mail address

Order Detail

SECURE CLOUD COMPUTING

E-COMMERCE - 1

Customer ID

Billing Address

Phone

E-mail address

Order Detail

Enterprise

Web

Application

Enterprise

Web

Application

SECURE CLOUD COMPUTING

E-COMMERCE - 2

Customer ID

Name

Credit Card Number

Card Expiry Date

Card Verification Value

Amount

2

WebApp

Public Cloud

Customer ID

Billing Address

Phone

E-mail address

Order Detail

SECURE CLOUD COMPUTING

E-COMMERCE - 3

WebApp

Public Cloud

Customer ID

Billing Address

Phone

E-mail address

Order Detail

Enterprise

Web

Application

CCN

Name

3

CCN

SECURE CLOUD COMPUTING

E-COMMERCE - 4

WebApp

Public Cloud

Customer ID

Billing Address

Phone

E-mail address

Order Detail

Enterprise

Web

Application

CCN

Name

4

Token

Enterprise

Web

Application

CCN

Name

SECURE CLOUD COMPUTING

E-COMMERCE - 5

Token

5

WebApp

Public Cloud

Customer ID

Billing Address

Phone

E-mail address

Order Detail

Token

SECURE CLOUD COMPUTING

E-COMMERCE –

PUBLIC CLOUD

Enterprise

Web

Application

CCN

Name

3

CCN

Token

4

Token

5

1

2

Customer ID

Billing Address

Phone

E-mail address

Order Detail

Customer ID

Name

Credit Card Number

Card Expiry Date

Card Verification Value

Amount

WebApp

Public Cloud

Customer ID

Billing Address

Phone

E-mail address

Order Detail

Token

SECURE CLOUD COMPUTING

E-COMMERCE -

VPDC

Enterprise

Web

Application

CCN

Name

3

CCN

Token

4

WebApp

Customer ID

Billing Address

Phone

E-mail address

Order Detail

Token

VPDC at

provider's

premises

Token

5

1

Customer ID

Name

Credit Card Number

Card Expiry Date

Card Verification Value

Amount

2

Customer ID

Billing Address

Phone

E-mail address

Order Detail

SECURE CLOUD COMPUTING

FOR HEALTHCARE

SECURE CLOUD COMPUTING

HEALTHCARE - 1

Hospital

Web

Application

PII

1

WebApp

Lab

SECURE CLOUD COMPUTING

HEALTHCARE - 2

Hospital

Web

Application

2

PII WebApp

Lab

SECURE CLOUD COMPUTING

HEALTHCARE - 3

Hospital

Web

Application

PII

3

Tokens WebApp

Lab

SECURE CLOUD COMPUTING

HEALTHCARE - 4

Hospital

Web

Application

PII WebApp

Lab

Tokens

4

SECURE CLOUD COMPUTING

HEALTHCARE - 5

Hospital

Web

Application

PII

5

Patient ID Tokens Non-PII Data

XENC File WebApp

Lab

Patient ID Tokens Non-PII Data

SECURE CLOUD COMPUTING

HEALTHCARE - 6

Hospital

Web

Application

PII Patient ID Tokens Non-PII Data

XENC File WebApp

6

SECURE CLOUD COMPUTING

HEALTHCARE - 7

Radiograph:: Courtesy Diego Grez

Hospital

Web

Application

PII

7

X-Ray Patient ID Tokens Non-PII Data

XENC File WebApp

SECURE CLOUD COMPUTING

HEALTHCARE - 8

Hospital

Web

Application

PII

8

Key Patient ID Tokens Non-PII Data

XENC File WebApp

SECURE CLOUD COMPUTING

HEALTHCARE - 9

Hospital

Web

Application

PII Keys

9

Token Patient ID Tokens Non-PII Data

XENC File WebApp

SECURE CLOUD COMPUTING

HEALTHCARE - 10

Hospital

Web

Application

PII Keys XENC File

10

Patient ID Tokens Non-PII Data

XENC File WebApp

SECURE CLOUD COMPUTING

HEALTHCARE –

PUBLIC CLOUD

Radiograph:: Courtesy Diego Grez

Hospital

Web

Application

PII Keys

2

PII

3

Tokens

7

X-Ray

8

Key

9

Token XENC File

10

5

PII

1

Patient ID Tokens Non-PII Data

XENC File WebApp

6

Lab

Patient ID Tokens Non-PII Data X-Ray Tokens

4

SECURE CLOUD COMPUTING

HEALTHCARE –

VPDC

Patient ID Tokens Non-PII Data

XENC File WebApp

VPDC at

provider's

premises

Hospital

Web

Application

PII Keys

2

PII

3

Tokens

7

X-Ray

8

Key

9

Token XENC File

10

5

PII

1

6

Lab

Patient ID Tokens Non-PII Data X-Ray Tokens

4