Dell EMC

Data encryption is fundamental to any defense-in-depth strategy whether the goal is to protect sensitive data from unauthorized disclosure or satisfy compliance mandates. Data is the new “gold,” and as value of data grows so does the urgency to protect it.

Thales and Dell Technologies: Working Together to Secure Data – Solution Brief

Dell PowerEdge servers integrate with Thales CipherTrust Manager to mitigate the threat of unauthorized access to encrypted data residing on SED or SDD/HDD drives using Secure Enterprise Key Manager (SEKM). Working with Thales, a leader in global data security, Dell EMC PowerEdge servers offers an integrated, cyber-resilient, design that helps protect customer data-at-rest, within the data center. CipherTrust Manager provides security by storing and managing keys away from the data and the encrypted device, providing strong data security even if the server is compromised or stolen. The solution can be configured to hold the private keys offshore, preventing domestic authorities from seizing these keys and accessing critical private data.

Offered as part of Dell OpenManage Secure Enterprise Key Manager, Thales CipherTrust Manager simplifies and centralizes encryption key policies and management, and helps meet global compliance, security, and privacy standards.

Dell PowerEdge SEKM and Thales CipherTrust Manager – Solution Brief

As the only fully integrated, preconfigured, and pre-tested VMware hyper-converged infrastructure appliance family on the market, VxRail™ dramatically simplifies IT operations, accelerates time to market, and delivers incredible return on investment. Powered by VMware vSAN and Dell PowerEdge servers, VxRail delivers continuous innovation with future-proof performance, predictably transforms with next-gen simplicity, and creates certainty with hardened security advancements. VxRail meets any HCI use case, including support for the most demanding workloads and applications.

Dell VxRail with Thales Key Management – Solution Brief

Thales CipherTrust Data Security Platform offers the only SAP-certified third-party encryption and tokenization solutions for SAP. Partnering with Dell, Thales supports customers’ SAP modernization strategies whether on-premises or in any cloud scenario. Through the Dell/Thales partnership, organizations can take advantage of file-level encryption, application-level tokenization, or centralized cloud key management to secure their sensitive SAP data across an array of Dell deployment options from on-premises hardware, Dell APEX or Dell-managed hybrid or multi-cloud implementations.

Thales TCT and Dell Technologies: Working Together to Secure Data – Solution Brief

Dell EMC Storage SC Series arrays offer unique advantages for modern workloads, including All-Flash models, Efficiency and Data Reduction Services, Live Volume, Federation, and more. The latest innovations offer dynamic mobility and the best economics. Through the use of self-encrypting drives, data stored at rest is secure wherever it resides and is only available to authorized users.

Data-at-Rest Encryption and Key Management with VMAX and KeySecure The VMAX and KeySecure integration

The integration of Thales’s SafeNet KeySecure external key management appliance with VMAX storage platforms offers customers a comprehensive key management and data encryption platform providing the following advantages:

• Leverages OASIS standard KMIP-based external key management protocol
• Features centralized key management and auditing for security compliance objectives
• Is a highly-available and resilient environment for long-term key storage external to the VMAX storage platform
• Is FIPS 140-2 Level 3 capability using KeySecure with HSMs
• Ability to temporarily decommission VMAX storage platform for secure transport by storing keys in SafeNet KeySecure

Each VMAX storage platform with the Data-at-Rest Encryption feature can be configured to connect to one or more KeySecure appliances at a customer’s data center. It is recommended that at least two KeySecure appliances are configured in a cluster for high-availability. There is no encryption key dependency between VMAX storage platforms, so independent KeySecure appliances/clusters can be configured at each site.

Dell EMC’s interoperability validation matrix maintains the most up-to-date list of VMAX-supported versions of Thales SafeNet KeySecure.

Disk Library for mainframe addresses the challenges of tape in the enterprise data center and delivers industry leading scalability, performance and availabilty to mainframe tape operations. Disk Library for mainfram combines RAID 6 protected disk storage, hot-standby disks, tape emulation, hardware compression with the ability to combine both primary and deduplication storage in a single manageable solution to meet enterprise mainframe data center tape replacement requirements.

The integration of Thales CipherTrust Manager external key management appliance with Disk Library for mainframe offers customers a comprehensive key management and data encryption platform providing the following advantages:

• Single, centralized platform for managing cryptographic content (keys and related data)
• Simplified management of encryption keys across the entire lifecycle including secure key generation, storage and backup, key distribution, rotation, deactivation and deletion
• Simplified attainment of government and compliance mandates with efficient, centralized auditing of key management practices
• Lower total cost of ownership by leveraging a continuously growing list of 3rd party technologies, Thales’s SafeNet Data Protection Connector family of products and the OASIS KMIP standard

The Dell EMC ML3 Tape Library offers scalability above and beyond traditional tape solutions, so that you can grow your data environment with your business. Keep it simple and save on time and support costs with the easy to order, easy to configure, and easy to upgrade ML3 with ML3E expansion. The integration of Thales CipherTrut Manager external key management appliance with ML3 offers customers a comprehensive key management and data encryption platform providing the following advantages:

• Single, centralized platform for managing cryptographic content (keys and related data)
• Simplified management of encryption keys across the entire lifecycle including secure key generation, storage and backup, key distribution, rotation, deactivation and deletion
• Simplified attainment of government and compliance mandates with efficient, centralized auditing of key management practices
• Lower total cost of ownership by leveraging a continuously growing list of 3rd party technologies, Thales’s SafeNet Data Protection Connector family of products and the OASIS KMIP standard

Dell EMC Unity’s All-Flash and Hybrid Flash unified storage platforms optimize SSD performance and efficiency, with fully integrated SAN and NAS capabilities. Cloud-based storage analytics and proactive support keep you available and connected.

Read “DELL EMC UNITY: DATA AT REST ENCRYPTION,” (controller-based encryption of data stored on Dell EMC™ Unity storage systems)

Avamar

Avamar Product Security Guide

Dell EMC Avamar enables fast, efficient backup and recovery through its integrated variable-length deduplication technology. Avamar is optimized for fast, daily full backups of physical and virtual environments, NAS servers, enterprise applications, remote offices and desktops/laptops.

By deduplicating data – identifying only unique daily changes – Avamar reduces backup storage by up to 30x and network bandwidth consumption by up to 99%. Data is always encrypted and compressed in-flight to meet security and compliance regulations.

The integration of Thales’s SafeNet KeySecure external key management appliance with Avamar offers customers a comprehensive key management and data encryption platform providing the following advantages:

• Single, centralized platform for managing cryptographic content (keys and related data)
• Simplified management of encryption keys across the entire lifecycle including secure key generation, storage and backup, key distribution, rotation, deactivation and deletion
• Simplified attainment of government and compliance mandates with efficient, centralized auditing of key management practices
• Lower total cost of ownership by leveraging a continuously growing list of 3rd party technologies, Thales’s SafeNet Data Protection Connector family of products and the OASIS KMIP standard

Dell (PC & Devices) Wyse Thin ClientSafeNet Authentication Solutions integrate with Dell Wyse Thin Clients to provide users with a virtual desktop infrastructure solution.

• SafeNet Authentication Client Compatibility Guide Using CBA for Dell Wyse

• SAS Using RADIUS Protocol and OTP for Dell Wyse vWorkspace

• SAS Using RADIUS Protocol for Dell Wyse vWorkspace

• SAM Using RADIUS Protocol for Dell Wyse vWorkspace

• SAC Compatibility Guide with Dell Wyse 5030

Dell EMC Data Domain storage systems provide data backup, archiving, and disaster recovery with high-speed, inline deduplication. They also has a new generation of midsized and large enterprise Data Domain systems powered with a Flash SSD. By consolidating backup and archive data on a Data Domain system, customers can reduce storage requirements by 10-30x, making disk cost-effective for onsite retention and highly efficient for network-based replication to disaster recovery sites. The Data Domain Operating System (DD OS) is the intelligence behind Data Domain systems that makes them one of most reliable and cloud-enabled protection storage.

The integration of Thales CipherTrust Manager external key management appliance with Dell’s EMC Data Domain storage systems offers customers comprehensive key management and data encryption platform providing the following advantages:

• Single, centralized platform for managing cryptographic content (keys and related data)
• Simplified management of encryption keys across the entire lifecycle including secure key generation, storage and backup, key distribution, rotation, deactivation and deletion
• Simplified attainment of government and compliance mandates with efficient, centralized auditing of key management practices
• Lower total cost of ownership by leveraging a continuously growing list of 3rd party technologies, Thales’s SafeNet Data Protection Connector family of products and the OASIS KMIP standard