Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


03:10 PM
Dark Reading
Dark Reading
Products and Releases

CipherCloud Brings Encryption To Any SaaS Or Cloud Applications

Connect AnyApp encrypts data in-transit, in-use, and at-rest for millions of public and private cloud Web applications

SAN JOSE, Calif., September 6, 2012 -- CipherCloud, the leader in cloud encryption, introduced today CipherCloud Connect AnyApp that encrypts data in-transit, in-use, and at-rest for millions of public and private cloud web applications without changing application functionality. This includes IaaS, SaaS, and PaaS web applications along with behind-the-firewall intranet applications used to manage sensitive data in enterprises every day. Enterprises now can deploy encryption or tokenization in hours, revolutionizing cloud security.

With Connect AnyApp, administrators simply specify fields on web pages to be encrypted. Like all other CipherCloud encryption gateway applications, there are no application changes or client software required. Enterprises can select from multiple encryption and tokenization options that preserve data format and operations, including search and sort.

CipherCloud Connect AnyApp is the latest addition to the CipherCloud Platform that provides cloud encryption across the enterprise. The CipherCloud Platform reduces the complexities of protecting business data by enabling organizations to quickly deploy and manage encryption across multiple cloud applications with a single system, saving time and money.

“By 2015, more than 70% of organizations could still be prone to data breaches of centrally stored private data in North America and Europe,” said Lawrence Pingree, Research Director at Gartner, Inc. “Cloud encryption gateways that can be configured to encrypt or tokenize data are needed to reduce this risk and allow businesses and governments to go beyond the firewall and adopt public and private clouds applications.”

“The millions of breached records that cost businesses and governments billions each year is testament to the fact that encryption has been unavailable or out of reach for many applications.” said Larry Ponemon, chairman and founder of The Ponemon Institute. “In the latest Ponemon Institute research a disturbing 72% of organizations still don’t even know how their cloud providers secure their data. Using encryption can not only eliminate the barriers to widespread cloud adoption but can also wipe away billions of dollars in data breach liabilities.”

The Breakthrough

Before CipherCloud Connect AnyApp, enterprises were faced with complex or costly options to use encryption or tokenization with SaaS, Cloud and web applications, if possible at all.

● Enterprises could attempt to add encryption or tokenization to middleware or databases, however, this approach required extensive development and integration and was not possible for SaaS or PaaS applications where code changes or database access are not allowed.

● Organizations could consider desktop software plugins or special mobile apps but these approaches take time to deploy, don’t work across mobile devices, and are frustrating for users - leading to low adoption.

● Finally, enterprises could use cryptographic toolkits to develop custom integration or applications. In all cases, preserving critical functionality like search, sort, and format was nearly impossible with all of these approaches.

“While our clients express interest in moving applications to the cloud, the expense and complication of securing data is holding many back.” said Glen Day, Ernst & Young’s Information Security Leader for Healthcare and Life Sciences in the Americas. “Enterprises need a simple and cost effective means to encrypt data for web applications, not just for the public cloud but also for majority of their home grown intranet applications.”

“Enterprises are looking to SaaS applications to help fuel innovation and expand business without getting weighed down in technology deployments and costly capital investments,” said Leo Corcoran, CEO of Claim Vantage. “CipherCloud Connect AnyApp allows ClaimVantage customers to use our latest SaaS applications and still meet their data privacy and compliance requirements.”

CipherCloud Connect AnyApp revolutionizes encryption for enterprises. Now any intranet form, custom developed web application, vertical specific SaaS application, or millions of other web applications can use encryption or tokenization. Securing data stored in web application is now as simple as:

1. Install CipherCloud virtual appliance which automatically generates an organization’s encryption keys

2. Specify URLs of the public and private cloud applications to be encrypted

3. Use Point-and-Click to create policies to encrypt or tokenize one or more fields

Once a policy is enabled, data entered for the web application is automatically encrypted or tokenized using CipherCloud’s format and operations preserving technology.

“Every business and government CipherCloud has spoken with asks how can they encrypt data for their own set of 3rd-party and custom web applications. This might be a behind-the-firewall application moving to IaaS or a hot new SaaS social enterprise app,” said CipherCloud founder and CEO, Pravin Kothari. “The industry’s wait is over and now millions of IaaS, SaaS, and PaaS and behind-the-firewall applications can have their data-at-rest protected with point-and-click encryption and tokenization policies without any programming.”

Key Benefits of CipherCloud Connect AnyApp include:

● Removes Data Security, Residency, Privacy, and Compliance Barriers: CipherCloud offers enterprises the choice to use format and operations preserving encryption or tokenization for millions of IaaS, SaaS, and PaaS web applications along with behind-the-firewall intranet applications.

● Preserves Enterprise Control Over Cloud Data: Secure key management, with keys owned by the enterprise, and standard AES-256 encryption ensure organizations retain control over data in-transit, in-use, and at-rest in the cloud or behind-the-firewall..

● Delivers a Fully Functional Web Experience: Unlike previous approaches to encryption, users enjoy native functionality like search, sort and reporting with CipherCloud’s format and operations preserving encryption and tokenization. There’s no change to the user experience even when using context-aware encryption policy to enforce data loss prevention rules.

● Reduces the Cost of Securing Enterprise Clouds: Now millions of web applications can quickly and easily use data-at-rest encryption or tokenization without any programming or costly client software deployment. The CipherCloud Platform provides a single cloud encryption platform for securing public and private clouds that Gartner forecasts will be used by over 25 percent of enterprises in 2016, up from less than 1 percent today, while reducing the cost of securing the cloud by 30 percent.

To learn more about how CipherCloud is revolutionizing encryption and the cloud, visit CipherCloud at Dreamforce stand #1526. You can also view online product demos and request more information by visiting www.ciphercloud.com.

Example Use Cases

Common use cases for CipherCloud Connect AnyApp include:

● SaaS Call Center Application: An insurance provider is expanding its customer service organization and moving to a new SaaS-based application. Information stored in the cloud includes sensitive data such as social security numbers, state and federally regulated health information, and payments data that must be secured under the PCI DSS (Payment Card Industry Data Security Standard). To prevent data breaches and comply with HIPAA (Health Insurance Portability and Accountability Act), HITECH (Health Information Technology for Economic and Clinical Health), and PCI DSS, the insurance company uses Connect AnyApp to encrypt data. The insurer can use the SaaS application immediately without any changes from the cloud service provider.

● IaaS Electronic Healthcare Record (EHR) System: A national healthcare provider is deploying an EHR application in a public IaaS cloud to cost effectively manage the massive amounts of data generated each day. However, like most cloud providers, the firm’s IaaS provider does not sign a HIPAA-required Business Associate Agreement (BAA). Instead the healthcare provider used Connect AnyApp to encrypt data before it’s sent to the cloud. Policies set included encryption for PDF and TIFF documents in addition to structure data fields. Encryption is recognized by the Health and Human Services Administration (HHS) as an approved mechanism to control access and ensure compliance.

● Migrating Homegrown Applications to IaaS: A global media and broadcasting company is looking to eliminating the costs for hosting homegrown web applications running on a mix of Windows Server and Linux webservers connected to an Oracle database. These applications contain sensitive personnel information, including contact details, addresses, travel, logistics, and editorial calendar. In the hands of competitors, this information could spoil exclusive news and higher ratings. When staff are travelling in war zones or covering controversial topics, this information could endanger the lives of journalists. Because of this, the media company could not move homegrown applications to IaaS to reduce budget expenses and free IT resources. To ensure the privacy of sensitive data stored in the applications, the broadcaster deployed Connect AnyApp. Policies were quickly set for the half dozen applications and sensitive data including images, PDFs, and other documents are encrypted in real-time. Staff can access applications from anywhere from the IaaS cloud provider. There were no changes to homegrown Windows and Linux web applications or the Oracle database, both of which were moved to the cloud.

● Intranet Deal Management Portal: A UK-based investment bank developed a deal management portal using SharePoint. Deal information is highly confidential, could impact public share prices, and is regulated by bodies such as the UK Financial Services Authority (FSA). Data must be segmented between not just administrators but also other deal teams within the bank. The firm deployed Connect AnyApp inside its datacenter to encrypt confidential data such as the identities of buyers and sellers as well as large file attachments including Excel spreadsheets and scanned PDFs. Only authorized deal team members can connect to Connect AnyApp, segmenting access and ensuring compliance.

● Enterprise social networking in a global commodities company: In an Australian based commodities firm, Yammer enterprise social networking has gone viral. The company operates across the globe in highly competitive and volatile markets. Increasingly, discussion of deals, futures contracts, and competitors are helping teams respond faster to changing market conditions. But, the enterprise is concerned about who may have access to data in the cloud and inside the organization. Using CipherCloud Connect AnyApp, administrators quickly configured policies to encrypt posts with a few simple configuration steps - all without integration or special support from Yammer or CipherCloud. Now the business has total control over their data in the cloud and who has access to it - whether in the organization or not.

In all five examples, no changes to the applications were required and CipherCloud Connect AnyApp could be deployed in hours.

About CipherCloud

CipherCloud is the market-leading provider of cloud encryption and tokenization gateways that enable enterprises to securely adopt cloud applications by eliminating concerns about data privacy, residency, security, and regulatory compliance. CipherCloud’s operations-preserving encryption and tokenization technology secures sensitive information in real time, before it's sent to the cloud, without impacting usability or performance, or requiring any change to the application. The CipherCloud Platform secures multiple cloud applications including Salesforce, Force.com, Chatter, Gmail, Office 365, and Amazon AWS. Recognized by Gartner as a Cool Vendor in Cloud Security in 2011, CipherCloud is backed by premier venture capital firms including Andreessen Horowitz, Index Ventures, and T-Venture, the venture capital arm of Deutsche Telekom. For more information, visit www.ciphercloud.com and follow us on Twitter @ciphercloud.

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
Why Cyber-Risk Is a C-Suite Issue
Marc Wilczek, Digital Strategist & CIO Advisor,  11/12/2019
Unreasonable Security Best Practices vs. Good Risk Management
Jack Freund, Director, Risk Science at RiskLens,  11/13/2019
Breaches Are Inevitable, So Embrace the Chaos
Ariel Zeitlin, Chief Technology Officer & Co-Founder, Guardicore,  11/13/2019
Register for Dark Reading Newsletters
White Papers
Cartoon Contest
Current Issue
Navigating the Deluge of Security Data
In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2019-11-16
Eval injection in the Math plugin of Limnoria (before 2019.11.09) and Supybot (through 2018-05-09) allows remote unprivileged attackers to disclose information or possibly have unspecified other impact via the calc and icalc IRC commands.
PUBLISHED: 2019-11-15
A specially crafted Bitcoin script can cause a discrepancy between the specified SLP consensus rules and the validation result of the [email protected] npm package. An attacker could create a specially crafted Bitcoin script in order to cause a hard-fork from the SLP consensus. All versions >1.0...
PUBLISHED: 2019-11-15
A specially crafted Bitcoin script can cause a discrepancy between the specified SLP consensus rules and the validation result of the slpjs npm package. An attacker could create a specially crafted Bitcoin script in order to cause a hard-fork from the SLP consensus. Affected users can upgrade to any...
PUBLISHED: 2019-11-15
An issue was discovered in Marvell 88W8688 Wi-Fi firmware before version p52, as used on Tesla Model S/X vehicles manufactured before March 2018, via the Parrot Faurecia Automotive FC6050W module. A heap-based buffer overflow allows remote attackers to cause a denial of service or execute arbitrary ...
PUBLISHED: 2019-11-15
An issue was discovered in Marvell 88W8688 Wi-Fi firmware before version p52, as used on Tesla Model S/X vehicles manufactured before March 2018, via the Parrot Faurecia Automotive FC6050W module. A stack overflow could lead to denial of service or arbitrary code execution.