Thales Blog

CipherTrust Data Security Platform as-a-Service Helps Control and Secure Your Critical Data

June 29, 2023

Emily Richuso Emily Richuso | Senior Product Marketing Manager, Thales More About This Author >

Many organizations are searching for ways to simplify their data security operations and reduce the impact of external threats. However, as they adopt multiple cloud and SaaS services the result is a complex web of unique solutions for encryption and key management, making it very challenging to administer data security.

In fact, according to the Thales 2023 Cloud Security Study, due to be released in July, 62% of respondents say they have five or more key management systems in place. Maintaining expertise for all of these unique key management systems places a heavy burden on security and IT teams. Additionally, using siloed tools can make it challenging to apply consistent security controls, leading to the exposure of sensitive data and significant manual work to comply with evolving data privacy regulations. These regulations require complete control over the security of business-critical data, such as personal information, medical records, and financial data. Digital and data sovereignty is a growing concern for business leaders; 83% are concerned about the impacts of sovereignty on cloud deployments.

Thales addresses these concerns with the CipherTrust Data Security Platform (CDSP), an integrated suite of data-centric security solutions that significantly reduces business risk and simplifies data security administration across on-premises and cloud environments. The good news for organizations in North America and Europe is that CDSP is now available as a cloud-based subscription service (CDSPaaS), enabling rapid deployment of key management and data protection services without the need to manage hardware or fund large upfront investments.

Overview of CipherTrust Data Security Platform as-a-Service

By introducing the CipherTrust Data Security Platform-as-a-service, Thales gives businesses a choice of key management deployment options from a virtual machine, physical appliance, and hybrid cluster to include a cloud-based subscription service.

Customers can sign up for CDSPaaS through Thales’s Data Protection on Demand (DPoD) Marketplace, a cloud-based online marketplace that provides a wide range of cloud data security, HSM and key management services. Each CDSPaaS subscription is hosted by Thales and backed by a FIPS 140-2 Level 3 certified Luna Cloud HSM hosted in the Thales DPoD data centers in Europe and North America. CDSPaaS is built to auto-scale to meet demands placed on the service, ensuring high availability and resilience to meet industry-comparable SLAs.

CDSPaaS uses the same underlying security technology as the CDSP product portfolio, enabling a broad range of use cases. The first CDSP service available is CipherTrust Cloud Key Management (CCKM), with other data security services to follow. CCKM enables organizations to centralize the management of cloud encryption keys as they migrate sensitive data to the public cloud.

CCKM provides a single pane of glass view across regions for cloud native, Bring Your Own Key (BYOK), and Hold Your Own Key (HYOK) keys and one straightforward interface to manage all cloud key management services, helping businesses experience higher efficiency and comply with data protection mandates, such as GDPR and Schrems II. CCKM is compatible with all major public cloud service providers (CSPs), including AWS, Azure, Google Cloud, Oracle Cloud, Salesforce, and SAP.

Benefits of the Service

According to the Forrester Total Economic Impact report, businesses that have leveraged the features of CDSP experienced an estimated 70% reduction in encryption and key management effort and a 35% reduction in the impact of a data breach. Overall, they have realized a $9 million benefit in three years and a 221% ROI.

There are 6 key benefits CSDPaaS can bring to organizations:

  • Save time and simplify operations: With no hardware to buy, configure, or manage, you can deploy data security more quickly and cost-effectively.
  • Avoid upfront capital investment: Subscribing to CDSP services eliminates the need to fund upfront multi-year investments in data security infrastructure.
  • Future proof without disruptions: Thales regularly updates the service so you can access the latest CDSP products without disrupting your operations.
  • Flexible architecture: Use CDSPaaS to scale quickly to meet business demands without planning ahead for capacity changes.
  • Seamless integration: Use REST APIs to spread security across multiple applications in your IT environment.
  • Partner ecosystem: CDSPaaS leverages an unparalleled partner ecosystem of integrations with leading cloud and SaaS vendors.

Free trial in less than 30 minutes

CipherTrust Data Security Platform-as-a-service is available now, and businesses can sign up for a 30-day free trial of through the Thales Data Protection on Demand (DPoD) Marketplace by following these three easy steps:

1. Sign up for a DPoD Marketplace account.

2. Select the CDSP service on the DPoD Marketplace and fill in the requested information.

3. Log in and get started with no commitments.

To learn more read the product brief or contact one of our experts here.