Data Security and Protection in Virtualized Machines

Thales eSecurity security solutions protect data within virtual environments like VMware and other major hypervisor platforms

Contact A Specialist Chat With Us

Virtual Environment Security

Organizations today face a broadening and increasingly sophisticated set of threats to the security of their sensitive data. These include privileged user abuse and advanced persistent threat (APT) attacks. As organizations grow increasingly reliant on virtual servers, their security challenges grow in complexity and scale. Sensitive data grows increasingly mobile. It is copied across many virtual machines. It is spread across the storage infrastructure and an increasingly diverse mix of physical platforms and operating systems. In this kind of environment, organizations need the persistent, robust, flexible, and comprehensive safeguards Thales eSecurity provides to ensure sensitive data remains secure and compliant.

Challenges
Solutions
Benefits
Related Resources

Data Security in Virtual Machines

When an organization runs sensitive data in fluid virtual machines, that data needs to be secured through robust, persistent, and auditable controls. Otherwise the organization exposes itself to data breaches, penalties for non-compliance and a sullied reputation.

Comprehensive Data Security for Multiple Platforms

Vormetric Transparent Encryption from Thales eSecurity delivers the virtual server security capabilities you need to safeguard your sensitive assets. Whether you’re running VMware, Microsoft Hyper-V, KVM (Kernel-based Virtual Machine), or any other standard virtualization platform, Thales eSecurity can help you address your critical virtual machine security compliance requirements, with unparalleled efficiency and low cost of ownership.

Data at Rest Encryption in Virtual Machines

Thales eSecurity enables you to encrypt data at the file system or volume level within virtual machines (VMs) and then use fine-grained, centrally managed policies to control access to protected data. As a result, you can enforce security policies and track access, no matter where data is copied or moved.

Granular Access Controls

Vormetric Transparent Encryption from Thales eSecurity provides fine-grained, policy-based controls that restrict access to encrypted data. Privileged users—whether cloud, virtualization, or storage administrators—can manage systems, without gaining access to encrypted data, unless they have expressly been granted permissions to do so.

Automation

For fast rollouts and integration within virtualized machines, both web and command-line level APIs provide access to the Vormetric Data Security environment for policy management, deployment, and monitoring.

Multi-Tenancy

By delivering capabilities for segregating security management domains, Thales eSecurity helps organizations address internal security policies and compliance mandates. Further, these security capabilities enable service providers to establish strong boundaries between customer environments, while still leveraging centralized visibility and control of security policies and activities.

Flexible Central Administration

Vormetric Transparent Encryption from Thales eSecurity offers support for implementation in a range of Linux and Windows operating systems. All policy and encryption key administration is done through the Vormetric Data Security Manager, which can be deployed as a physical appliance or virtualized service, and either on or off premise, according to your objectives and environments.

White Paper : VMware Product Applicability Guide for Deploying Thales eSecurity for PCI DSS Version 3.0 Compliance

This white paper written by a leading QSA, Coalfire, goes through the PCI DSS 3.0 controls in great detail and describes how the Vormetric Data Security Platform deployed in a Payment Card Environment running in VMware can help gain compliance.

Download

Vormetric Encryption delivers what we need it to do – without any fuss or drama – knowing it’s in place is one less thing to worry about. Albert AvilaBusiness Solutions Specialist, Fujitsu America, Inc.

Thales eSecurity is our standard. Whenever an encryption solution is needed, the answer is always, ‘let’s start with Thales eSecurity. Damian McDonaldVice President of Global Information Security, Becton, Dickinson and Company

There is absolutely no noticeable impact on the performance or usability of applications. I am very excited at how easy the solution is to deploy and it has always performed flawlessly. Christian MuusDirector of Security for Teleperformance EMEA

Implementing Vormetric has given our own clients an added level of confidence in the relationship they have with us; they know we’re serious about taking care of their data. Audley Deansenior director of Information Security,
BMC Software

Vormetric’s approach of coupling access control with encryption is a very powerful combination. We use it to demonstrate to clients our commitment to preserving the security and integrity of their test cases, data and designs. David VargasInformation Security Architect
Cadence Design Systems

My concern with encryption was the overhead on user and application performance. With Thales eSecurity, people have no idea it’s even running. Karl MudraCIO
Delta Dental of Missouri

The Vormetric solution not only solved all of our encryption needs but alleviated any fears of the complexity and overhead of managing the environment once it was in place. Joseph Johnson,chief information security officer CHS

As a global payment solutions and commerce enablement leader, Verifone’s strategy is to develop and deploy “best in class” payment solutions and services that meet or exceed global security standards and help our clients securely accept electronic payments across all channels of commerce. We selected Thales HSMs to provide robust security, unmatched performance and superior scalability across… Joe Majka,Chief Security Officer

play