key-management-page-banner

Bring Your Own Encryption to the public cloud

Multi-cloud data security and portability with centralised key management

What is Bring Your Own Encryption (BYOE)?

Cloud data security might seem easy at first. Turning on the equivalent of full-disk encryption for a public cloud provider is simple. But it’s a multi-cloud world. Managing data security across multiple public clouds and different cloud storage options quickly gets complex. Thales offers advanced multi-cloud Bring Your Own Encryption (BYOE) tools to secure your data and reach compliance rapidly and effectively.

test

 

Most cloud service and leading encryption providers use the same encryption technique: Advanced Encryption Standard, or AES. However, encrypting data is only a starting point. To truly protect your data, you need to consider the threats you’re protecting against, managing encryption keys and access controls across multiple cloud providers.

Compared to the native encryption solutions available from cloud providers, Thales BYOE gives you higher confidence that your data is secure and that you are in compliance with mandates by delivering:

  • High-performance AES encryption enhanced by hardware acceleration and granular access control policies, including privilege user access control. BYOE controls who, through what process and at specified times, can see specific data. Watch a demo.
  • An architecture that secures unstructured files, structured databases and big data environments and enables you to migrate data between cloud environments and on-premises servers without the time and cost of decryption. For additional granular controls and meeting a larger breadth of regulations, easily add format preserving or traditional encryption or tokenisation to applications using RESTful APIs or the industry’s most powerful and secure encryption libraries.
  • BYOE extensions enable use of data during encryption and rekeying operations with patented Live Data Transformation or, to isolate and secure container environments by creating policy-based encryption zones. BYOE monitors and logs file access to accelerate threat detection with Security Intelligence Log integration with popular SIEM tools.
  • Simplified key management across on-premises and multi-cloud deployments by centralizing control on CipherTrust Manager

What’s the coolest, newest thing with Bring Your Own Encryption? CipherTrust Transparent Encryption can now encrypt S3 buckets from cloud workloads or even from on-premises! Read the solution brief.