Streamlined Tokenisation and Dynamic Data Masking

Now you can hide sensitive data in plain sight

Tokenisation & Data Masking

Vormetric Vaultless Tokenisation with Dynamic Data Masking

Vormetric Vaultless Tokenisation with Dynamic Data Masking dramatically reduces the cost and effort required to comply with security policies and regulatory mandates like PCI DSS while also making it simple to protect other sensitive data including Personally Identifiable Information (PII). And Dynamic Data Masking protects data in use while tokenisation is protecting data at rest. You can efficiently address your objectives for securing and anonymizing sensitive assets—whether they reside in data center, big data, container or cloud environments.

Vormetric Tokenisation with Dynamic Data Masking
Efficiently Reduce PCI DSS Compliance Scope

Remove card holder data from PCI DSS scope with minimal cost and effort and save big on complying with the industry standard with Vormetric Vaultless Tokenisation with Dynamic Data Masking.

Foster Innovation Without Introducing Risk

Tokenize data and maintain control and compliance when moving to the cloud, big data, and outsourced environments.

Scale Globally

Deploy the vaultless tokenisation solution globally without concerns about token synchronization or performance. Server clustering enables easily to manage scale.

Tokenisation Choices

Vormetric Tokenisation combines the scalability and availability benefits of a vaultless solution with business-centric options for protecting data: both format-preserving and random tokenisation. Format-preserving tokenisation enables data protection without changing database schemas and offers irreversible tokens. Random tokenisation offers high performance, convenient data protection.

Dynamic Data Masking

Administrators can establish policies to return an entire field tokenized or dynamically mask parts of a field. For example, a security team could establish policies so that a user with customer service representative credentials would only receive a credit card number with the last four digits visible, while a customer service supervisor could access the full credit card number in the clear.

Simple, Non-Disruptive Implementation

Tokenisation mechanisms, methods and dynamic data masking rules are defined in a centralized, friendly graphical user interface (GUI). This dramatically reduces programming required for data protection. In addition, a range of format-preserving tokenisation mechanisms are available to reduce requirements for changing the database schema. The Tokenisation Server’s virtual appliance form factor enables fast scaling.

Tokenisation capabilities:

Alphanumeric format preserving (FF1/FF3) or random tokenisation up to 128KB, Date tokenisation

Dynamic data masking capabilities:

Alpha/numeric, custom mask character

Validation support:

Luhn check

Virtual appliance:

Open Virtualization Format (.ovf), International Organization for Standardization (.iso), Microsoft Hyper-V, Microsoft Azure Marketplace, Amazon Machine Image (.ami), Google Cloud Platform

Application integration:

REST APIs

Authentication integration:

Lightweight Directory Access Protocol (LDAP); Active Directory (AD)

High-Performance:

Over 1 million tokenisation transactions per token server

Clustering for redundant, geographically dispersed, or scale-up tokenisation servers

Solution Brief : Vormetric Tokenisation with Dynamic Data Masking

Tokenisation and data masking – anonymizing data for security and compliance. The Vormetric Data Security Platform features tokenisation capabilities that can dramatically reduce the cost and effort associated with complying with security policies and regulatory mandates like the Payment Card Industry Data Security Standard (PCI DSS).

Download

Research and WhitePaper : Vormetric Tokenisation

For too many IT organizations, complying with the Payment Card Industry Data Security Standard (PCI DSS) and corporate security policies has been far too costly, complex, and time consuming. Now, Thales eSecurity offers a better way. Vormetric Tokenisation with Dynamic Data Masking helps your security team address its compliance objectives while gaining breakthroughs in operational efficiency.

Download

Research and WhitePaper : Evaluation of the Thales eSecurity Token Server

Fortrex Qualified Security Assessor (QSA) evaluated the Thales eSecurity Token Server, and determined when properly implemented and configured within a secured cardholder environment, it can reduce the scope of the systems included in the scope of a PCI DSS assessment. They also qualified that the solution can be leveraged to tokenize other sensitive data within a corporate environment. Fortrex detailed their evaluation process in their white paper, Evaluation of the Thales eSecurity Token Server.

Download

White Paper : Complying with PCI DSS 3.0 Encryption Rules

This white paper outlines how to use Vormetric Transparent Encryption to meet PCI DSS 3.0 Requirements with Data-at-Rest Encryption, Access Control and Data Access Audit Logs in traditional server, virtual, cloud and big data environments. The paper maps PCI DSS requirements 3, 7, 8, 9 and 10 that can be addressed with Vormetric Transparent Encryption.

Download
Watch our interactive demo Explore
Schedule a live demo Schedule
Get in contact with a specialist Contact us