Aamir Sardar | Director Alliances, Thales DIS CPL
More About This Author >
Aamir Sardar | Director Alliances, Thales DIS CPL
More About This Author >
Today’s businesses are focused on leveraging data at scale to fuel innovation, improve decision-making, and enhance customer experiences. This cannot happen without flexible, scalable cloud platforms that can handle a wide range of data types and workloads while keeping costs down and operations agile.
As cloud adoption accelerates and organizations increasingly migrate workloads from traditional on-premises setups to the cloud, they have stringent security and compliance needs, particularly to protect sensitive and regulated data in a public cloud. Letting confidential data fall into the wrong hands is not an option, which is why cloud security has become critical. But it’s not just about protecting the infrastructure; it’s about controlling the encryption and the cryptographic keys that safeguard your data.
Introducing Teradata VantageCloud Lake
With VantageCloud Lake, businesses can leverage an advanced, lake-centric cloud analytics and data platform designed to solve complex analytics and AI challenges. It enables entities to access, analyze, and manage structured and unstructured data across multiple environments.
Key benefits include:
- Next-generation, high-performance cloud native architecture
- ClearScape Analytics - powerful, open, and connected AI/ML capabilities
- Hybrid multi-cloud architecture - process data wherever it resides
- Smart-scaling technology - dynamic resource allocation and automated scaling as business needs evolve
- Seamless integration with AWS, Azure, and Google Cloud
To harness these benefits confidently, businesses must ensure that data is secure, compliant, and sovereign.
Strengthening Cloud Security with CipherTrust Database Protection
Thales, Teradata’s strategic global security partner, has developed a powerful solution tailored specifically for VantageCloud Lake to enable businesses to control their data security. With CipherTrust Database Protection for Teradata Vantage Cloud Lake (CDP for Teradata VantageCloud Lake) enterprises can ensure that security, compliance, and operational resilience are never compromised.
CDP for Teradata VantageCloud Lake is a purpose-built encryption designed to protect data on Teradata VantageCloud Lake. The solution is based on the shared responsibility model of cloud security, leveraging the principles of Bring Your Own Encryption (BYOE). It allows Teradata’s customers to maintain full sovereignty over their data encryption keys while leveraging infrastructure from global cloud providers like AWS, GCP and Azure.
How Does the Solution Work?
The Thales CDP for Teradata VantageCloud Lake includes several core components:
1. Encryption: This provides encryption at the database column level, protecting sensitive data fields, in line with compliance mandates.
2. Tokenization: This technique replaces sensitive data with non-sensitive placeholders or tokens, reducing the exposure of the original data.
3. Dynamic Data Masking: Ensures that only authorized users can see data in its plain form. Others could receive the data showing in a masked format, e.g., the last four digits only, or not receive the data at all.
4. External Key Management: This allows for secure management of encryption keys outside of the cloud environment, enhancing security and control over access to encrypted data, and enabling compliance with data sovereignty requirements.
5. CipherTrust Manager and Luna Hardware Security Modules: CDP for Teradata VantageCloud Lake works with Thales CipherTrust Manager for cryptographic operations and lifecycle management of encryption keys. CipherTrust Manager also offers the option to generate and store these keys in the Thales Luna Hardware Security Module (HSM), providing a secure hardware-based Root-of-Trust.
Best in Class Solution to Meet Your Critical Security Needs in the Cloud
The integration of Thales encryption and key management capabilities into the VantageCloud Lake platform helps Teradata customers solve several cloud security needs including:
- Data Security: Encryption ensures that sensitive data remains protected, whether at rest, in transit, or in use, mitigating risks of unauthorized access and data breaches.
- Data Sovereignty: For global entities navigating a maze of data residency and sovereignty requirements, CDP for Teradata VantageCloud Lake helps them to maintain independent control over encryption keys, seeing that data is only accessible in jurisdictions where it is legally permitted.
- Controlling Operator Access: With growing concerns over internal threats and operator misuse, CDP for Teradata VantageCloud Lake ensures that only authorized people are able to access encrypted data, dramatically cutting the risk of insider threats.
- Operational Resilience: Encrypted data and secure key management allow critical business operations to continue without compromising sensitive data in the unfortunate event of a cyberattack or data breach.
- Compliance: Thales’ CDP for Teradata VantageCloud Lake solution is also designed to help businesses comply with key global security frameworks, such as GDPR, PCI DSS 4.0, NIS2, and the Digital Operational Resilience Act (DORA). With governments and regulatory bodies imposing increasingly stringent rules on data protection and cybersecurity, entities must demonstrate that they can secure sensitive data and provide detailed audit trails and encryption mechanisms to prove compliance requirements.
The Power of the Thales and Teradata Partnership
The collaboration between Thales and Teradata is an excellent example of how two global companies can come together to deliver modern solutions that solve real-world business challenges. The partnership brings a comprehensive solution for both legacy Teradata customers transitioning to the cloud and new customers who are looking for modern analytics and AI capabilities with enhanced security.
This launch will equip enterprises with the tools they need to move their workloads to the cloud securely, comply with stringent regulatory mandates, and keep total control over their encryption keys.
Future-Proofing Cloud Migrations
Maintaining data security remains crucial as businesses migrate data to cloud environments. The new CDP for Teradata VantageCloud Lake solution from Thales solves key security goals of customers such as encryption, key management, data sovereignty, and compliance. It’s a comprehensive and customizable security layer for Teradata VantageCloud Lake.
Enterprises should start exploring how the Thales-Teradata solution can support their cloud migration strategies and ensure that security, compliance, and operational resilience are never compromised.