Fortanix Data Security Manager

Fortanix Data Security Manager

Fortanix Data Security Manager (DSM) is the Unified Data Security Platform. It is the world’s first solution to provide HSM grade security with software-like flexibility. Fortanix DSM provides REST APIs alongside traditional interfaces, native server-side clustering, centralized management, a tamper-proof audit log, and more. You can secure your keys, both on-premises and in the cloud.

Fortanix Data Security Manager delivers data security and privacy by means of vaultless, Format Preserving Encryption (FPE) that allows teams to strike a balance between safeguarding sensitive data, complying with regulations, and unlocking data’s potential. With Fortanix, data is tokenized early in the data lifecycle to shift data security left, minimize sensitive data footprint across hybrid, multicloud environments, and ensure data anonymity right from the moment of creation or ingestion.

Fortanix provides Tokenization-as-a-Service, with a cloud-scale architecture for better and faster performance and simplifies implementation and management.

Data tokenization, also known as Format-Preserving Encryption (FPE), replaces sensitive data sets like PANs, PHI, and PII with surrogate values called tokens. These tokens retain the same format as the original dataset but have no intrinsic value. This approach preserves data integrity and structure while anonymizing and safeguarding it against unauthorized access.

Fortanix Data Security Manager — Tokenization

Loss of sensitive data can lead to costly regulatory penalties affecting your company’s bottom line and reputation. Tokenization can avoid regulatory penalties and protect sensitive data by replacing personally identifiable information (PII) such as credit card account numbers with non-sensitive and random strings of characters, known as a ‘Token’, that preserves the format for the data and the ability to extract the real information. With Fortanix, you can substitute tokens for sensitive data using REST APIs to achieve privacy compliance. This helps eliminate the link to sensitive data and avoid exposing sensitive information if a data breaches occurs.

Fortanix DSM — Benefits

Enhanced security and controls

Fortanix delivers a powerful combination of FPE and RBAC to bolster sensitive data protection. The platform integrates natively with FIPS 140-2 Level 3 compliant HSMs to secure encryption keys for tokenized data, eliminating the need for a centralized token database.

Safe Data Sharing

With Fortanix data tokenization, organizations can securely share specific data sets with third parties for analytics or internal customer support staff, all the while keeping sensitive data deidentified, secure, and compliant.

Simplified Regulatory Compliance

Teams can leverage the Fortanix tokenization solution to dynamically obfuscate sensitive information, for examples credit card or social security numbers, thus ensuring compliance with PCI-DSS, or electronically protected health information (ePHI) and non-public personal information (NPPI) to adhere to HIPAA regulations.

Fortanix DSM — Key Features

The combination of Format Preserving Tokenization and role-based access control (RBAC) for applications helps in protecting sensitive data. With Fortanix, authorized users can get authenticated through RBAC, query the data, and tokenize data on the fly.

A user can choose to dynamically mask an entire field of tokenized data or part of the field based on user or group. Integrated with the LDAP or Active Directory, masking can be applied to any combination of digits that are tokenized data.

Tokenization can also be combined with data encryption at rest to provide an additional layer of security that protects against insiders having access to decrypted sensitive data.

User can tokenize any custom objects to protect any kind of data other than a credit card or SSN. Depending on the type of data the users want to protect, they can create security objects belonging to the tokenized data types.