AUTOMOTIVE
Writer
Decru Partners With Oracle to Lock Down Database Security
Decru DataFort is the only security appliance that can be deployed transparently with Oracle across SAN, NAS, and DAS storage environments. No changes are required to applications, no software agents are required, and DataFort can be deployed in existing environments without taking applications or data offline. DataFort provides wire-speed AES-256 encryption for Gigabit Ethernet and 2 Gigabit Fibre Channel storage networks, enabling strong data security without performance tradeoffs. "Protecting data at rest is a growing concern for many customers. The combination of Oracle's proven security features with Decru DataFort's hardware-based storage encryption provides a powerful secure platform," said Bronwyn Hastings, vice president, Worldwide Alliances and Channels at Oracle. "The Oracle-Decru solution provides a transparent and simple approach to protecting sensitive data." The Oracle-Decru solution enables applications including: -- Secure grid computing: DataFort extends Oracle's security into the storage network with authentication and encryption. All data is transparently encrypted before it reaches the storage infrastructure, ensuring maximum flexibility with minimum vulnerability. -- Secure storage consolidation: The Oracle-Decru solution allows enterprises to securely consolidate their storage infrastructures. Users can cryptographically separate data using Decru Cryptainer(R) storage vaults, ensuring that storage administrators and other unauthorized users cannot access data. Since stored data is encrypted at all times, this protection extends into the backup and disaster recovery infrastructure. -- Regulatory compliance: A growing number of regulations require enterprises to protect the privacy and integrity of customer data. DataFort provides a turnkey, appliance-based approach to ensure that regulated data is protected in the storage infrastructure. Decru CryptoShred(TM) features enable guaranteed, secure deletion of data at the end of the compliance lifecycle. -- Secure outsourcing and offshoring: The combination of Oracle and Decru security capabilities enables enterprises to pursue outsourcing initiatives while tightly managing the risk of unauthorized data access. By separating the ability to manage data from the ability to read it, the solution allows managers to safely optimize their supply chain and partner strategies. "Sophisticated IT managers understand that security is a multi-layered proposition," said Dan Avida, chief executive officer at Decru. "As a result of our certification testing with Oracle we can provide seamless integration and security across SAN, NAS and DAS storage environments." Storage Security Requirements Networked storage environments have grown rapidly in recent years, aggregating terabytes of data into shared infrastructures. Backup and disaster recovery systems create multiple distributed copies of data, further complicating the process of securing and controlling access to sensitive information. As a result, a single internal or external breach can compromise terabytes of data, resulting in security exposure, brand damage, lost revenues, legal liability and regulatory penalties. To date, the vast majority of security infrastructure investment has been focused on perimeter defenses such as firewalls and intrusion detection, and few measures have been deployed to protect stored data at the core of the network. Large organizations often provide "superuser" access to dozens or hundreds of insiders, with limited auditing or accountability. At the same time, the "insider threat" has emerged as a top concern, with an estimated 50-80% of security attacks originating behind the firewall (source: FBI/CSI). Gartner Research recently predicted that by year-end 2006, failure to encrypt credit card numbers stored in a database will be considered legal negligence in civil cases of unauthorized disclosures (probability 0.8), and that by year-end 2007, 80% of Fortune 1000 enterprises will encrypt their sensitive data at rest (probability 0.8). Decru DataFort The Decru DataFort storage security appliance combines secure access controls, authentication, storage encryption, and secure logging to provide unprecedented protection for sensitive stored data. By locking down stored data with strong encryption and routing all access through secure hardware, DataFort radically simplifies the security model for networked storage. Decru DataFort appliances are the only solution that can be deployed transparently in SAN, NAS, DAS and tape backup environments, with no disruption to servers, desktops, applications, storage, or user workflow. DataFort has received numerous government and third-party certifications including U.S. Department of Defense 5015.2 certification and FIPS-140-2 Level 3 certification. DataFort is currently underway with Common Criteria certification, with an assurance target of EAL-4+. Decru products have been adopted by customers on three continents in sectors including financial services, healthcare, telecommunications, media, semiconductors, manufacturing, aerospace, and government.