Secure Static Data Masking
CipherTrust Batch Data Transformation
Static Data Masking refers to the process of transforming selected data in various data stores to unreadable or unusable forms, typically in order to utilize data sets while preventing misuse of sensitive data.
The startling breadth of static data masking use cases begins with these, each of which begin with “masking sensitive data”:
There are countless more static data masking use cases! CipherTrust Batch Data Transformation from Thales has use cases beyond static data making. Here are some examples:
CipherTrust Batch Data Transformation is part of the CipherTrust Data Security Platform. It leverages the power of CipherTrust Application Data Protection and CipherTrust Tokenization to protect vast quantities of data quickly.
Secure, cost-effective static data masking
Not every static data masking solution is secure. With Batch Data Transformation, you can depend on the security of centralized key management provided by CipherTrust Manager, which can provide up to FIPS 140-2 Level 3 key security. Meanwhile, every investment in the Data Security Platform makes it more valuable to you.
Accelerate Transformation of Existing Sensitive Data
Following deployment and execution of CipherTrust Data Discovery and Classification you can rapidly protect discovered sensitive information in database columns quickly and efficiently using either encryption or tokenization with minimal disruption, effort and cost.
Enable database sharing with reduced risk
Static data masking enables you to remove the sensitive information before sharing with internal or third-party developers and big data environments while simultaneously maintaining your data integrity and supporting mission-critical testing and analytical activities.
Static Data Masking where you need it
Batch Data Transformation and its data protection tools are all software and completely cloud friendly. You can mask data on premises and use it in the cloud, mask data in the cloud and use it there, or secure data in one cloud and use it in another. The CipherTrust Data Security Platform provides a wide range of data protection capabilities from on-premises to cloud, enabling secure digital transformations. Learn how to bring your own encryption to the cloud!
Large volumes of data are encrypted quickly with Batch Data Transformation in conjunction with CipherTrust Application Data Protection. Policy files define encryption options including standard AES encryption or format preserving encryption, while identifying the database columns to be protected and the number of records in each batch.
An alternative to encryption for static data masking is tokenization. Batch Data Transformation can utilize the CipherTrust Tokenization Server to tokenize select database columns. Detokenization is supported so that applications can access the clear data again when required, or, irreversible tokenization can ensure that third parties never gain access to original sensitive data.
Flexible Conversion Between Data Stores
CipherTrust Batch Data Transformation can protect data while it is moving, for example, from a database to various flat file formats or in reverse.
Data Transformation Options
Source and Destination Transformation Options
Hardware and Operating System Requirements
Offers industry leading enterprise key management solution to centrally manage encryption keys and configure security policies.
Static Data Masking refers to the process of transforming selected data in various data stores to unreadable or unusable forms, typically order to utilize data sets while preventing misuse of sensitive data.
The CipherTrust Data Security Platform (CDSP) increases data security, accelerates time to compliance, and secures cloud migration -- which decreases resources required for data security operations.