Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

7/22/2020
10:00 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Sotero Secures $5 Million for Data Security as a Service Platform

Company also celebrates launch of the first field-level data protection solution encrypting data in use, data at rest, and data in motion across all data stores.

Burlington, MA - July 22, 2020 - Sotero, an innovator in comprehensive data protection with an emphasis on data usability, today announced the launch of the first data protection platform providing field-level encryption for data in use, data at rest, and data in motion across on-premise and cloud data stores. Sotero’s leading-edge data encryption model enables the enterprise to unlock the full value of its data and empowers SaaS companies and data platform providers to attract and retain customers and downstream partners. Sotero also announced a $5M funding round backed by Gutbrain Ventures, Boston Seed Capital and PBJ Capital, alongside significant partnership traction.

The Sotero Universal Data Protection Platform solves the formerly intractable challenge associated with protecting data in use, a challenge that exposes enterprises, SaaS companies and data platform providers to significant business risk from data loss due to breach or malicious actors. The platform’s unique architecture ensures comprehensive data protection in depth with zero impact on application performance, empowering organizations to meet growing compliance and regulatory requirements at both the national and international level.

“I have seen firsthand why engineering teams at SaaS providers and data platforms not only avoid addressing this major gap in data protection–encrypting data in use–but think it is practically impossible. Until now, there simply wasn’t a scalable, comprehensive way to protect data in use across complex data environments,” said Sotero CEO Purandar Das, a seasoned data management executive who has served as CTO at leading data solution providers such as Infogroup and Epsilon. 

Adds Das: “We set out to develop Sotero as an ‘always on’ platform delivering comprehensive and practical data protection as a service. Our goal was to close the data-in-use gap in data protection, a gap that limits what companies can do with their data while making it hard for SaaS companies and others to rapidly grow their customer base. By simply and efficiently securing data in use, Sotero frees up data engineering, science and application teams to focus on what they do best—innovate and collaborate with customers, embrace the cloud, and create new revenue streams.” 

With significant momentum in channel partnerships in the financial, pharmaceutical, and SaaS industries, Sotero already serves as the trusted encryption solution for Yellowbrick Data, the hybrid cloud data warehouse company, as well as for global business transformation experts, Holley Holland, among others. 

Holley Holland chose to partner with Sotero because its technology dependably secures data no matter where it resides. “Highly regulated industries, such as financial services and healthcare, have no option but to meet stringent requirements for protecting sensitive and critical data. With Sotero, we can confidently assure our clients that their data will be secure whether it is at rest, in use or in transit to the cloud.”  

“Sotero provides the added data protection across hybrid and multi-cloud data warehouse environments businesses need today,” said Neil Carson, CEO of Yellowbrick Data. “We chose Sotero for its unique ability to provide granular data encryption and work across all environments. These capabilities ensure that our clients can safely and securely migrate data to the cloud and scalably share data with customers and partners.”

“Sotero’s ability to encrypt all data in use with the most advanced granular protection establishes a new paradigm for data protection” said Sotero investor and board member Robert Davoli of Gutbrain Ventures. “As a solution, Sotero is not only technically superior but incredibly easy to deploy and use. It doesn’t disrupt existing processes or impact the user experience, and yet it offers literally unprecedented levels of security. The experienced team behind Sotero, with its extensive data management pedigree, has really closed the gap.”

Until Sotero, enterprise teams, SaaS companies and data platform providers had no easy way to ubiquitously protect operational databases, tackle data protection for secure cloud data transfer and access, or confidently support secure data sharing and analysis. Eliminating the need for multiple data encryption tools, including point solutions such as Transparent Data Encryption (TDE) tools for relational, non-tabular (NoSQL), and file databases, Sotero puts an end to data protection solution sprawl. Sotero utilizes the most sophisticated encryption for data in use, including deterministic, random and format-preserving encryption. Sotero is also compatible with all on-prem, cloud and hybrid data stores, including Oracle, SQL Server, MySQL, Hadoop, Avalanche, Snowflake, Yellowbrick, Postgres, and MongoDB, and comes with pre-built integrations to leading access and key management solutions. 

About Sotero

Sotero offers the first field-level, universal data protection platform, which scalably encrypts data at rest, in motion and in use, across on-premise and cloud data stores. Enterprise, SaaS and data platform providers choose Sotero to protect their operational databases, secure cloud data access, and safe data analysis and sharing with partners and across international borders. The company is backed by Gutbrain Ventures, Boston Seed Capital and PBJ Capital. 

For more information, visit https://www.soterosoft.com/ or follow us on Twitter @SoteroSecure.

 

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 9/25/2020
Hacking Yourself: Marie Moe and Pacemaker Security
Gary McGraw Ph.D., Co-founder Berryville Institute of Machine Learning,  9/21/2020
Startup Aims to Map and Track All the IT and Security Things
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/22/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-15208
PUBLISHED: 2020-09-25
In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, when determining the common dimension size of two tensors, TFLite uses a `DCHECK` which is no-op outside of debug compilation modes. Since the function always returns the dimension of the first tensor, malicious attackers can ...
CVE-2020-15209
PUBLISHED: 2020-09-25
In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, a crafted TFLite model can force a node to have as input a tensor backed by a `nullptr` buffer. This can be achieved by changing a buffer index in the flatbuffer serialization to convert a read-only tensor to a read-write one....
CVE-2020-15210
PUBLISHED: 2020-09-25
In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, if a TFLite saved model uses the same tensor as both input and output of an operator, then, depending on the operator, we can observe a segmentation fault or just memory corruption. We have patched the issue in d58c96946b and ...
CVE-2020-15211
PUBLISHED: 2020-09-25
In TensorFlow Lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, saved models in the flatbuffer format use a double indexing scheme: a model has a set of subgraphs, each subgraph has a set of operators and each operator has a set of input/output tensors. The flatbuffer format uses indices f...
CVE-2020-15212
PUBLISHED: 2020-09-25
In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger writes outside of bounds of heap allocated buffers by inserting negative elements in the segment ids tensor. Users having access to `segment_ids_data` can alter `output_index` and then write to outside of `outpu...