Data Security Leader Offers Proven, Customer-tested Database Encryption and Security Solutions for Oracle and Microsoft SQL Server Database Environments
SANTA CLARA, Calif. – September 17, 2008 – Vormetric™, Inc., the leader in data security management and enforcement solutions, today announced the introduction of the Vormetric Database Security Packs, which deliver proven, customer-tested data security, key security and separation of duties for Oracle and Microsoft SQL Server database environments. The Vormetric Database Security Packs are the first solutions providing fully-tested policies to quickly establish a consistent and centralized approach for securing Oracle and SQL Server database data and also provide strong separation of duties. Ready-to-implement, pre-defined security best practices and policies leverage Vormetric’s deep experience working with the world’s largest enterprises and government agencies to secure Oracle and SQL Server environments across all index types, all data types and all versions, including Oracle 8i, 9i, 10g and 11g as well as Microsoft SQL Server 2000, 2005 and 2008.
Enterprises store a vast majority of their sensitive and mission-critical data on databases, driving them to ensure strong data security, regulatory compliance and separation of duties. With high-profile database breaches continuing to grab national headlines, Vormetric Database Security Packs help organizations avoid the financial impact of these thefts. According to an April 2007 report by Forrester titled Calculating The Cost Of A Security Breach, “all things considered, a security breach can cost you anywhere between $90 and $305 per record.”
Vormetric Database Security Packs also directly address compliance with security and privacy regulations, including the Payment Card Industry Data Security Standard (PCI DSS) encryption and key management requirements, separation of duties for SarbanesOxley and state data protection laws for personally identifiable information.
“As the industry-leading provider of IT security, governance and regulatory compliance services, Coalfire works with our clients to implement best practices and meet regulatory compliance objectives every day,” said Kennet Westby, CTO and co-founder of Coalfire Systems. “Through our work with Vormetric customers, we have seen strong success in consolidating data security and encryption management. We are pleased to see Vormetric continuing to lead the industry by consolidating their best practices for Oracle and SQL Server through offering such easy to implement solutions to their customers.”
Vormetric Database Security Packs integrate seamlessly with Vormetric Data Security Manager, Vormetric Database Encryption Expert, Vormetric File Encryption Expert and Vormetric Key Security Expert. The Vormetric Database Security Packs complement Vormetric’s ability to centrally manage encryption, keys and policies for all database types, including DB2, Informix, Sybase and MySQL.
The first offering, Vormetric Database Security Pack for Oracle, will be generally available September 30, 2008. This security pack offers three distinct modules to fit any organization’s Oracle security environment:
- Encryption and Access Control: For customers requiring Oracle Encryption, this database encryption and security policy module transparently encrypts and controls access to sensitive data within the Oracle Database, Oracle log files and Oracle configuration files for single node, replicated and clustered environments.
- Oracle Key Security: For customers who have adopted Oracle Transparent Data Encryption (TDE), the key security policy module locks down stored Oracle keys and Oracle Wallet.
- Oracle Database Vault Execution Environment Security: For customers who have adopted Oracle Database Vault, the Vormetric Security Pack for Oracle secures the execution environment and completes the separation of duties model.
The Vormetric Security Pack for Oracle supports all versions of Oracle Database and data types. With the Vormetric Security Pack for Oracle, regulated and security conscious enterprises can immediately deploy proven best practices for securing Oracle and easily customize to their unique environment. The Vormetric Security Pack for Oracle complements Vormetric Data Security’s ability to encrypt any file, any database, any application, anywhere – without the need and expense of changing applications, indexes, database management practices or breaking application vendor support agreements. With a growing customer base throughout the business process outsourcing, government, financial services, retail and consumer services sectors, Vormetric is rapidly emerging as the standard for enterprise encryption.
“Over the past few years, regulatory compliance requirements and increasing security breaches have put significant pressure on enterprises to take stronger data security measures. Today, basic database management system (DBMS)-level security includes authentication, authorization, and access control (AAA), but those alone are not good enough to meet compliance requirements,” wrote Noel Yuhanna, principal analyst at Forrester Research in the January 2007 report Enterprise Databases Need Greater Focus To Meet Regulatory Compliance Requirements. “Enterprises should look at advanced security measures, such as database and network encryption, granular auditing, data masking, real-time database monitoring, and separation of duties, besides having strong policies and procedures to ensure data privacy and protection. Every regulatory compliance requirement is different; therefore, enterprises should take appropriate advanced database security measures to meet requirements.”
“Vormetric is dedicated to offering simple, manageable and effective solutions that solve the broad array of data security challenges facing today’s regulated enterprise. The Vormetric Database Security Packs are an important step in furthering that effort,” said Richard Gorman, president and CEO, Vormetric. “For years, Vormetric has worked with the most security conscious organizations in the world to secure Oracle, Microsoft SQL, Informix, Sybase, MySQL and IBM DB2 databases. That extensive knowledge is now readily available in solutions that allow organizations to quickly and properly implement a broad set of best practices to protect their most sensitive information.”
The Vormetric Data Security Pack for Oracle will be generally available September 30, 2008 and the Vormetric Security Pack for SQL Server will be generally available in November 2008. For more information, please contact the Vormetric sales team at (888) 267-3732 or attend Vormetric’s VIP cocktail party during Oracle OpenWorld 2008 at the Yerba Buena Gardens on Wednesday, September 24 from 4:30-7:30 p.m. PT. Details on the event can be found at: http://www.vormetric.com/company/newsevents.html#events
Vormetric is the leader in data security management and enforcement solutions. Vormetric Data Security provides a centrally managed, high performance, easy-toimplement, distributed solution that solves the pressing compliance, security and risk management challenges facing today’s enterprises and government agencies. Vormetric’s application- and database-transparent solution outperforms other offerings to provide stronger and broader data security at a fraction of the management and implementation cost.
Vormetric’s more than 230 customers represent the world’s most trusted brands in financial services, retail, manufacturing, healthcare, media, energy and telecom industries as well as highly security conscious government agencies.
Vormetric technology has received strong market validation for its innovative approach to data security, including:
- Selection by IBM as the core database encryption solution for DB2 and Informix on LinuxTM, Unix® and Windows
- Computerworld Technology Innovation Award
- Selection by Symantec to provide the Symantec Veritas NetBackupTM Media Server Encryption Option
- Partnership with Oracle to secure the execution environment for Oracle® Database Vault
- Five patents issued and nine patents pending
Vormetric is a trademark of Vormetric, Inc. All other names mentioned are trademarks, registered trademarks or service marks of their respective owners