Default banner

Zero-Downtime Encryption and Key Rotation

CipherTrust Transparent Encryption Live Data Transformation enables administrators to encrypt entire file systems or databases and do key rotation—with minimal disruption.

CipherTrust Transparent Encryption Live Data Transformation

Cyber Security Excellence Awards Winner 2018

Deployment and management of data-at-rest encryption can present challenges when transforming clear-text to cipher-text, or when rekeying data that has already been encrypted. Traditionally, these efforts required planned downtime, or they required labor-intensive data cloning and synchronization. CipherTrust Transparent Encryption Live Data Transformation (formerly known as Vormetric Transparent Encryption Live Data Transformation) eliminates these hurdles, enabling encrypting and rekeying with unprecedented uptime and efficiency.

CipherTrust Transparent Encryption Live Data Transformation enables non-disruptive initial encryption and simplified, more-compliant encryption key rotations. Users continue to work as usual while encryption is in process.

CipherTrust Transparent Encryption Diagram

 

  • Benefits
  • Features
  • Specifications

Improve Security and Data Availability

CipherTrust Transparent Encryption Live Data Transformation, with zero downtime encryption deployments, allows for encrypting and re-keying data without taking applications offline. This allows deployment of data security controls to applications along with business continuity and high availability.

Reduce Operational Costs of Encryption

In the past, critical applications had to be taken offline for initial encryption of data and encryption maintenance, with substantial operational costs. Not anymore! CipherTrust Live Data Transformation provides zero-downtime encryption.

Reduce Compliance Overhead

Compliance requirements and best practices demand periodic encryption key changes. With CipherTrust Live Data Transformation, maintaining standards no longer requires downtime; applications and users continue to work as usual during rekey operations.

Versioned Backups and Archives

With key versioning management, Live Data Transformation offers efficient backup and archive recovery that enable virtually immediate access. In a data recovery operation, archived encryption keys recovered from the CipherTrust Manager are automatically applied to an older data set. Restored data is encrypted with the current cryptographic keys.

Zero-Downtime Encryption Deployments

CipherTrust Live Data Transformation enables your administrators to encrypt data with zero downtime or any disruption to users, applications, or workflows. While encryption is underway, users and processes can continue to interact with databases or file systems as normal.

Seamless Key Rotation

To align with security best practices and many regulatory mandates, it is vital to periodically rotate cryptographic keys. Live Data Transformation makes it fast and efficient to do this. With this solution, you can perform key rotation without having to duplicate data or take associated applications off line.

Requires CipherTrust Transparent Encryption as a prerequisite.

Operating system support:

Microsoft—Windows Server 2019, 2016 and 2012; Linux—Red Hat Enterprise Linux (RHEL), SuSE Linux Enterprise Server

Cluster support:

Microsoft Cluster—File Cluster, SQL Server Cluster

Big data support:

Cassandra, CouchBase, Hadoop, MongoDB, SAP HANA, Teradata

Backup/replication support:

DB2 backup, NetBackup, NetWorker, NTBackup, Oracle Recovery Manager (RMAN), Windows Server Volume Shadow Copy Service (VSS)

  • Related Resources