Microsoft Azure offers convenience and cost savings. However, you still need to follow security, privacy and compliance rules, as well as best practices, for protecting data. Further, you need rapid data mobility across all clouds you currently use and those in your future, a need which can be compromised with cloud-vendor-specific encryption solutions.

Advanced encryption with comprehensive azure key management

Effective, secure use of cloud services involves an increasing number of decisive moments, such as when you consider using sensitive data in any cloud. You can rely on Thales to secure your digital transformation. Thales advanced encryption and centralised key management solutions give you protection and control of data stored on your premises, Microsoft Azure and other cloud providers. Thales technology enables you to:

Avoid cloud vendor encryption lock-in and ensure the data mobility you need while you efficiently and securely spread workloads and data across multiple cloud vendors, including Microsoft Azure, with centralised, independent encryption management
Take secure advantage of Azure Key Vault with a centralised key management solution that spans multiple clouds
Identify attacks faster with data access logging to industry leading SIEM applications
Reduce or eliminate risks arising from compromised credentials with advanced encryption including privileged user access controls
Architect applications for the cloud with built-in security using vaultless tokenisation with dynamic data masking

Microsoft Azure Private Cloud - Encryption Key Management Diagram

Bring your own advanced encryption to Microsoft Azure

If you’re 100% Microsoft Azure-based with stringent data security controls, or if you’re running in a hybrid, multi-cloud environment with data distributed across your on-premises private cloud, multiple cloud providers and on Microsoft Azure, you need an advanced data encryption solution. CipherTrust Transparent Encryption protects your files and databases stored anywhere, including Microsoft Azure, without any changes to applications, databases, infrastructure or business practices.

Accelerated PCI-DSS compliance

CipherTrust tokenisation secures and anonymises sensitive assets for simplified PCI-DSS compliance. And it’s easy to add policy-based dynamic data masking to applications. The CipherTrust tokenisation is available in the Azure Marketplace.

Azure encryption key management

Organisations that cannot bring their own encryption can still follow industry best practices by managing keys externally using the CipherTrust Cloud Key Manager, which leverages cloud provider Bring Your Own Key API’s to reduce both key management complexity and reduce operational costs. You can deploy CipherTrust cloud key manager on premises or instantiate it in the Azure Marketplace.

Centralised, secure key management

The CipherTrust Manager centralises key, policy and log management for CipherTrust Transparent Encryption, available as a FIPS 140-2 Level 2 or 3 appliance or in the Azure Marketplace.

Azure Stack HCI/Hub Validated

Microsoft Azure Stack enables customers to extend Azure services and capabilities to their environment of choice – from the data centre to edge locations and remote offices. With Azure Stack HCI, customers can run their production workloads anywhere on hybrid, hyper-converged infrastructure.

Thales solutions validated for use with Microsoft Azure Stack HCI/Hub include:

Thales also has solutions for Microsoft 365 including Double Key Encryption Security and Control with Luna Key Broker

Thales solutions for Microsoft Azure Key Management