Upload
others
View
1
Download
0
Embed Size (px)
Citation preview
THALES HELPS FINANCIAL SERVICES ORGANIZATIONS IMPROVE THEIR DATA SECURITY AND COMPLIANCE POSTURES
Safeguards customer records by rendering them unusable to attackersSimplifiescompliancewithPCIDSSandotherdataprivacymandates and regulationsProtectstheorganization’sreputationandrevenue against long-term damage
Securesthemostsensitivekeysandbusinessprocesses intheorganizationinanindependently-certified, tamper-resistantenvironmentEncryptssensitivedataefficiently,withlittletono performance impact
<Thales e-Security>
DATA PROTECTION SOLUTIONS FOR FINANCIAL SERVICES ENTERPRISES
w w w . t h a l e s e s e c u r i t y . c o m
Financialservicesorganizationsfaceuniquechallenges intheireffortstoprotectsensitivecustomerinformation incompliancewithindustryregulationsandmandates.Addingcomplexitytothischallenge,customerdatacanbe found in a mix of systems and applications across the distributedenterprise–atrest,inuseandintransit.
Inresponse,financialservicesenterprisesmustimplementstringent security controls that protect against threats andabuse,whilesafeguardingandprocessingsensitivecustomerdatainacompliantmanner-allofwhichcanbeadministrativelyandfinanciallyburdensome.
Oneareathatcontinuestoevolveispayments.WhereascreditcardtransactionstraditionallyoccurredbyswipingorinsertingthecardinaPOSterminal,thetrendisnowtowardcontactlessandmobileapp-basedtransactions.Asconsumerscontinuetoseekconvenienceandsecurity,andmerchantsandappdevelopersconstructnewpaymentoptions,financialinstitutionsmustkeepinnovatinginkind.
Financialinstitutionsalsocontinuetoadoptnewandemerging technologies such as cloud computing and containerswhich,whiletheyofferpotentialefficienciesandcostreductions,expandtheorganization’sdigitalfootprint.
Significantly,financialenterprisesareincreasinglyexploringtheuseofdistributedledgertechnologies,suchasblockchain,tostreamlinetransactionsandreduceoperationalrisk.Thesetechnologiesrepresentsignificantnewopportunitiesforenterprises,butsecuritymustbeincorporatedfromtheoutset.
Follow us on:
Americas – Thales e-Security Inc. 900 South Pine Island Road, Suite 710, Plantation, FL 33324 USA • Tel:+1 888 744 4976 or +1 954 888 6200 • Fax:+1 954 888 6211 • E-mail: [email protected] Pacific – Thales Transport & Security (HK) Lt, Unit 4101-3, 41/F, Sunlight Tower, 248 Queen’s Road East, Wanchai, Hong Kong • Tel:+852 2815 8633 • Fax:+852 2815 8141 • E-mail: [email protected], Middle East, Africa – Meadow View House, Long Crendon, Aylesbury, Buckinghamshire HP18 9EQ • Tel:+44 (0)1844 201800 • Fax:+44 (0)1844 208550 • E-mail: [email protected]
<Thales e-Security>
Some of the risks facing enterprises include:
Highlymotivatedadversariesseektoexploitvulnerabilities toextractvaluablepersonallyidentifiableinformation(PII)andcorporateIPComplyingwithPCIDSSandotherdataprotectionmandatesrequirestimeandadministrativeresourcesAdministrativecosts,penalties,reputationaldamageandincreased regulatory scrutiny resulting from a data breach
THALES DATA PROTECTION SOLUTIONS FOR FINANCIAL SERVICES ENTERPRISESFinancialservicesorganizationsworldwidetrustThalestoaddresstheiruniquechallenges.Ourdataprotectionsolutionshelpenterprisesreducerisk,demonstratecomplianceandenhanceagilitywhilepursuingstrategicgoalsaroundemergingpaymentandtransactiontechnologies.
PAYMENT SECURITYThaleshasabroadrangeofhardwareandsoftwaresolutionsthataredesignedspecificallyforpaymentapplicationsandtightlyintegratedwithleadingoff-the-shelfsolutionsfrom themajorthirdpartyvendors.TheThalespayShield90001 isaprovenhardwaresecuritymodule(HSM)thatperformssuchtasksasPINprotectionandvalidation,transactionprocessing,mobileandpaymentcardissuance,andkeymanagement.ThepayShield9000delivershighassuranceprotectionforautomatedtellermachine(ATM)andpointofsale(POS)creditanddebitcardtransactions.VormetricTokenizationwithDynamicMasking2 lets administrators establish policies to return anentirefieldtokenizedordynamicallymaskpartsofafield.Withthesolution’sformat-preservingtokenizationcapabilities,managerscanrestrictaccesstosensitiveassets,yetatthesametime,formattheprotecteddatainawaythatenablesmanyuserstodotheirjobs.
ThalesHSMsarealsodeployedaspartofmobilepoint-of-sale3 and payment processing4solutionswithourindustrypartners,andhelpensurecompliancewithvarioussecurityrequirementsincludingPCIHSM,PCIPINSecurityandPCIP2PE.
DATA-AT-REST ENCRYPTIONThalessolutionslikeVormetricDataSecurityPlatform5,VormetricTransparentEncryption6andVormetricApplicationEncryption7 provideasingleextensibleframeworkforprotectingdata-at-restunderthediverserequirementsofthebankingandfinancialservicesindustryacrossthebroadestrangeofOSplatforms,databases,cloudenvironmentsandbigdataimplementations.Thisresultsinalowtotalcostofownership,aswellassimple,efficientdeploymentandoperation.
ThalesDatacryptorSeries8encryptssensitivedatatraversingenterprisenetworks–acrossdepartments,facilitiesorregions–withlittletonoimpactonnetworkperformanceandbandwidth.
ENCRYPTION KEY PROTECTION & MANAGEMENTKeymanagementsolutionsfromThalesofferhardware-basedkeyprotectionsolutionswithThalesnshieldHSMs9 and enable centralizedmanagementofencryptionkeysviaVormetricKeyManagement10forotherenvironmentsanddevicesincludingKMIPcompatiblehardware,OracleandSQLServerTDEmasterkeysanddigitalcertificates.
CLOUD DATA PROTECTIONThalese-Securityprovidescloudencryption11 and key management12solutionsthatkeepfinancialinstitutionsincontroloftheirdata.Ourpartnershipswithindustry-leadingIaaS,PaaS,SaaSandmanagedservicesprovidersmeanwecansupportanycloudstrategy-public,privateorhybrid.
ESTABLISH THE ROOT OF TRUST FOR BLOCKCHAIN & DISTRIBUTED LEDGERSnShieldHSMshelpfinancialservicesorganizationsprotectandmanage the cryptographic keys that underpin blockchain13 and otherdistributedledgerapplications.nShieldHSMsenableenterprisestodesignarchitecturesthatprovidethehigh-assurancesecurityrequiredfordistributedledgers.
Contactyouraccountrepresentativetodayorvisit www.thalesesecurity.comtolearnhowwecan helpyouimproveyourdatasecurityandcompliance.
DATA PROTECTION SOLUTIONS FOR FINANCIAL SERVICES ENTERPRISES
©Thales-M
ay2017•PLB65
57
7. www.thalesesecurity.com/products/data-encryption/vormetric-application-encryption
8. www.thalesesecurity.com/products/data-motion-encryption-hardware/
datacryptor-5000-series
9. www.thalesesecurity.com/products/general-purpose-hsms
10. www.thalesesecurity.com/solutions/use-case/data-security-and-encryption/
database-security/tde-key-management
11. www.thalesesecurity.com/solutions/use-case/cloud-security/enterprise-users
12. www.thalesesecurity.com/solutions/use-case/cloud-security/key-management
13. go.thales-esecurity.com/Delivering-Trust-to-Blockchain-Technology
1. www.thalesesecurity.com/products/payment-hsms/payshield-9000
2. www.thalesesecurity.com/products/tokenization-data-masking
3. www.thalesesecurity.com/solutions/use-case/payments/mpos
4. www.thalesesecurity.com/solutions/use-case/payments/payment-processing
5. www.thalesesecurity.com/products/data-encryption/vormetric-data-security-platform
6. www.thalesesecurity.com/products/data-encryption/vormetric-transparent-encryption