Skip Navigation

Vormetric Application Encryption

Vormetric Application Encryption delivers key management, signing, and encryption services enabling comprehensive protection of files, database fields, big data selections, or data in platform-as-a-service (PaaS) environments. One version of the solution is FIPS 140-2 Level-1 certified. The product is, based on the PKCS#11 standard and fully documented with a range of practical, use-case based extensions to the standard including but not limited to Microsoft Crypto Next Generation (CNG). Vormetric Application Encryption eliminates the time, complexity, and risk of developing and implementing an in-house encryption and key management solution while providing secure key management. Development options include a comprehensive, traditional software development kit for a wide range of languages and operating systems as well as a collection of RESTful APIs for the broadest platform support.

Vormetric Application Encryption from Thales CPL is available for sale to the U.S. Federal Government exclusively through Thales TCT.

  • Benefits

    Streamline Encryption Implementations
    Vormetric Application Encryption simplifies the process of adding key management and encryption to applications. Developers use RESTful API’s, Java, .NET, or C libraries to implement PKCS#11 standards-based solutions. Users of Microsoft Crypto Next Generation simply make standard calls delivering higher key security and secure cryptographic operations.

    Secure Cloud and Big Data Environments
    With the application encryption solution, you can encrypt specific fields at the application layer, securing sensitive data before it is stored in database, big data, or cloud environments.

    Establish Strong Controls
    With keys under your control, can have the power to stop compromised DBAs, cloud administrators, hackers, and authorities with subpoenas from gaining unauthorized access to valuable data.

  • Features

    Centralized Key and Policy Management
    Vormetric Application Encryption enables centralized key management and control of application-layer encryption. Secure key generation and storage is provided by the Vormetric Data Security Manager. The solution simplifies the data security operations environment, reducing the number of management consoles that administrators have to learn and maintain.

    Flexible Implementation Options
    Vormetric Application Encryption is available using two programming options: via an installable software development kit (SDK) and run time environment, available for a wide range of operating systems and programming language bindings, and via RESTful API’s. Both options provide access to key management, encryption, signing and other classes of API’s as defined by PKCS#11. The SDK run time environment for Windows Server supports Microsoft CNG.

    Fine-Grained Authorization
    Solution architectures utilizing RESTful API access to Vormetric Application Encryption gain access to fine-grained authorization for access and use of encryption keys.

  • Specifications

    Supported development environments
    RESTful API, Microsoft .NET 2.0 and higher, Java 7 and 8, C

    Integration standard
    OASIS PKCS#11

    Encryption
    AES, Format Preserving Encryption (FF1)

    Operating systems
    Linux, Windows 2008, 2012 and 2016

    SDK performance
    [SDK] 400,000 credit card size encryption transactions per second (e.g. single thread, 32 core, 16GB, C)

    Policy and key administration
    Vormetric Data Security Manager

    Format Preserving Encryption character support
    ASCII, Unicode

    Certification
    FIPS 140-2 Level 1 (SDK Edition)

  • Resources
 

This site uses cookies to store information on your computer. Some are essential to make our site work properly; others help us improve the user experience.

By using the site, you consent to the placement of these cookies. For more information, read our cookie policy and our privacy policy.

Accept