Welcome!

Blog Feed Post

Porticor’s Safe-Deposit Box Strategy Balances Data Control And Security In The Cloud

Posted by Robert Mullins, February 16, 2012

Data at rest has long been protected by technology called public key infrastructure (PKI), in which data is encrypted when it’s created by a public key, and only decrypted by the authorized person holding the private key. But data protection is complicated in cloud environments.

According to a new report,InformationWeek’s “Data Encryption: Ushering In a New Era”, cloud and mobility are adding new challenges to security. “The problem of mobility and cloud is it forces policies, processes and encryption technologies to have to scale to an outside device, organization, and too many more use cases,” says Michael Davis, CEO of Savid Technologies and author of the report. “This usually means the governance/audit team isn’t ready, the security team gets bogged down in details related to deployment, but in the end we don’t see users impacted too much by encryption in these spaces as the technology is usually transparent.”

A number of firms are developing technologies to address one of the top security concerns of companies considering a cloud deployment. One such company, Israeli-based Porticor, is coming out with an encryption tool that secures data managed by public cloud service providers and by companies that deliver private cloud platforms to enterprise customers. The founder and CEO says their approach to data security in the cloud is based on the concept of the safe deposit box people use to securely store valuables in a bank.

“A safe deposit box in a bank has two keys, one for the customer and the other for the banker,” says Gilad Parann-Nissany. The customer can’t open the box without the banker’s key and the banker can’t open the box without the customer’s key.

In the cloud environment, Porticor’s solution gives one key to the customer — in this case the customer who subscribes to a public cloud infrastructure as a service (IaaS) provider, or to a company that operates a private cloud for a customer under the platform as a service (PaaS) model. The provider, or “banker,” has a unique key for each application that the customer runs in the public or private cloud environment, he explains.

The safe deposit box analogy is not new in data encryption, says Scott Crawford, managing research director at Enterprise Management Associates, but he believes Porticor’s approach to protecting data in third-party-hosted resources is unique. “It is targeted to help solve the problem of balancing control over data security with reliable key management that has challenged many other approaches up to now,” he says.

But Porticor is not alone in trying to deliver a cloud data security solution. He identifies CipherCloud as a company offering a data security gateway designed specifically for cloud environments, as does Navajo Systems, a company acquired by Salesforce.com in August 2011. There are also a number of vendors that address both on-premise and cloud data security through various approaches including Vormetric, Gazzang and Voltage Security.

Porticor’s Virtual Private Data System offering is two-fold: the Porticor Virtual Appliance/Agent; and the Porticor Virtual Key Management Service. The appliance encrypts the customer’s entire data layer using the AES 256-bit encryption algorithm; pricing starts at $27.50 per month per appliance. The key management service uses the company’ patent-pending key-splitting technology to create the customer and banker keys.

The offering gives customers the security of knowing they maintain control over their data when they entrust it to the cloud, and offloads the responsibility for protecting that data from the cloud providers to Porticor. “For the first time, what we allow our customers to do here is to basically maintain privacy within a public environment. We have eliminated the dilemma of where do we store the key,” says co-founder Ariel Dan.

Porticor was founded in 2010 and its veteran start-up team spent time at SAP, Check Point Software Technologies, Websense and PortAuthority. The company is in the midst of finalizing partnerships with one major IaaS public cloud service provider and another major PaaS private cloud provider — both U.S.-based — but wasn’t ready to disclose their identities.

Read the original blog entry...

More Stories By Gilad Parann-Nissany

Gilad Parann-Nissany, Founder and CEO at Porticor is a pioneer of Cloud Computing. He has built SaaS Clouds for medium and small enterprises at SAP (CTO Small Business); contributing to several SAP products and reaching more than 8 million users. Recently he has created a consumer Cloud at G.ho.st - a cloud operating system that delighted hundreds of thousands of users while providing browser-based and mobile access to data, people and a variety of cloud-based applications. He is now CEO of Porticor, a leader in Virtual Privacy and Cloud Security.

Latest Stories
DevOps at Cloud Expo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to w...
DevOps is under attack because developers don’t want to mess with infrastructure. They will happily own their code into production, but want to use platforms instead of raw automation. That’s changing the landscape that we understand as DevOps with both architecture concepts (CloudNative) and process redefinition (SRE). Rob Hirschfeld’s recent work in Kubernetes operations has led to the conclusion that containers and related platforms have changed the way we should be thinking about DevOps and...
Is advanced scheduling in Kubernetes achievable? Yes, however, how do you properly accommodate every real-life scenario that a Kubernetes user might encounter? How do you leverage advanced scheduling techniques to shape and describe each scenario in easy-to-use rules and configurations? In his session at @DevOpsSummit at 21st Cloud Expo, Oleg Chunikhin, CTO at Kublr, will answer these questions and demonstrate techniques for implementing advanced scheduling. For example, using spot instances ...
SYS-CON Events announced today that Taica will exhibit at the Japan External Trade Organization (JETRO) Pavilion at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Taica manufacturers Alpha-GEL brand silicone components and materials, which maintain outstanding performance over a wide temperature range -40C to +200C. For more information, visit http://www.taica.co.jp/english/.
When it comes to cloud computing, the ability to turn massive amounts of compute cores on and off on demand sounds attractive to IT staff, who need to manage peaks and valleys in user activity. With cloud bursting, the majority of the data can stay on premises while tapping into compute from public cloud providers, reducing risk and minimizing need to move large files. In his session at 18th Cloud Expo, Scott Jeschonek, Director of Product Management at Avere Systems, discussed the IT and busine...
SYS-CON Events announced today that SourceForge has been named “Media Sponsor” of SYS-CON's 21st International Cloud Expo, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. SourceForge is the largest, most trusted destination for Open Source Software development, collaboration, discovery and download on the web serving over 32 million viewers, 150 million downloads and over 460,000 active development projects each and every month.
Enterprises have taken advantage of IoT to achieve important revenue and cost advantages. What is less apparent is how incumbent enterprises operating at scale have, following success with IoT, built analytic, operations management and software development capabilities – ranging from autonomous vehicles to manageable robotics installations. They have embraced these capabilities as if they were Silicon Valley startups. As a result, many firms employ new business models that place enormous impor...
SYS-CON Events announced today that TidalScale will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. TidalScale is the leading provider of Software-Defined Servers that bring flexibility to modern data centers by right-sizing servers on the fly to fit any data set or workload. TidalScale’s award-winning inverse hypervisor technology combines multiple commodity servers (including their ass...
As popularity of the smart home is growing and continues to go mainstream, technological factors play a greater role. The IoT protocol houses the interoperability battery consumption, security, and configuration of a smart home device, and it can be difficult for companies to choose the right kind for their product. For both DIY and professionally installed smart homes, developers need to consider each of these elements for their product to be successful in the market and current smart homes.
In his general session at 21st Cloud Expo, Greg Dumas, Calligo’s Vice President and G.M. of US operations, will go over the new Global Data Protection Regulation and how Calligo can help business stay compliant in digitally globalized world. Greg Dumas is Calligo's Vice President and G.M. of US operations. Calligo is an established service provider that provides an innovative platform for trusted cloud solutions. Calligo’s customers are typically most concerned about GDPR compliance, applicatio...
SYS-CON Events announced today that MIRAI Inc. will exhibit at the Japan External Trade Organization (JETRO) Pavilion at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. MIRAI Inc. are IT consultants from the public sector whose mission is to solve social issues by technology and innovation and to create a meaningful future for people.
Companies are harnessing data in ways we once associated with science fiction. Analysts have access to a plethora of visualization and reporting tools, but considering the vast amount of data businesses collect and limitations of CPUs, end users are forced to design their structures and systems with limitations. Until now. As the cloud toolkit to analyze data has evolved, GPUs have stepped in to massively parallel SQL, visualization and machine learning.
In his Opening Keynote at 21st Cloud Expo, John Considine, General Manager of IBM Cloud Infrastructure, will lead you through the exciting evolution of the cloud. He'll look at this major disruption from the perspective of technology, business models, and what this means for enterprises of all sizes. John Considine is General Manager of Cloud Infrastructure Services at IBM. In that role he is responsible for leading IBM’s public cloud infrastructure including strategy, development, and offering ...
As hybrid cloud becomes the de-facto standard mode of operation for most enterprises, new challenges arise on how to efficiently and economically share data across environments. In his session at 21st Cloud Expo, Dr. Allon Cohen, VP of Product at Elastifile, will explore new techniques and best practices that help enterprise IT benefit from the advantages of hybrid cloud environments by enabling data availability for both legacy enterprise and cloud-native mission critical applications. By rev...
SYS-CON Events announced today that NetApp has been named “Bronze Sponsor” of SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. NetApp is the data authority for hybrid cloud. NetApp provides a full range of hybrid cloud data services that simplify management of applications and data across cloud and on-premises environments to accelerate digital transformation. Together with their partners, NetApp emp...