Randtronics DPM easyData
Effortless Field-Level Data Protection: no-code or low-code solutions for databases, applications and flat files
Field-Level Data Protection (FLP)
DPM easyData provides FLP services (encryption, format preserved encryption, masking, tokenization, anonymization, pseudonymization) for protecting data stored in databases, applications and flat files.
Data de-identification enables selective redaction by replacing whole or parts of sensitive data with a non-sensitive equivalents.
DPM easyData complements the binary authorized ‘can open’ /not authorized ‘can’t open’ protection provided by DPM easyCipher or other TDE products by selectively redacting the content visible to authorized users.
There are many reasons to restrict data visibility to authorized users, including:
- restricting bank employees to only see last 4 digits of account or credit card
- preventing DBA or other IT staff accessing personal or financial data – whilst still performing their duties
- allowing dev/test or analytics teams access to live data to perform their tasks without visibility of sensitive data
- authorized user is a web application presenting data to the public
DPM easyData supports the full range of FLP or data de-identification techniques including masking, tokenization, anonymization, pseudonymization, format preserved encryption and encryption.
With DPM easyData, organizations centrally manage FLP protection policies, ensuring consistent data protection and compliance with regulatory and privacy standards. CISOs can confidently demonstrate enterprise-wide best-practice privacy management to auditors.
More information:
DPM easyData comprises a centrally deployed management module that provides FLP services via API, agentless, local deployed agents and utilities:
- DPM easyData – central place for administrator to configure data protection policies for applications, flat files and databases. Requires installation of DPM easyKey for key management services.
- DPM easyData Database Connector – provides no-code FLP services to MS SQL and Oracle databases. Connector runs on the database to provide tokenization, anonymization, encryption, format preserved encryption or masking of column level data. A connector is required on each database containing data to be protected.
- DPM easyData Database Clientless – provides no-code FLP services to MS SQL, Maria, Postgres, MySQL and Oracle databases. No agent installation is required on the database to provide tokenization, anonymization, encryption, format preserved encryption or masking of column level data.
- DPM easyData File – provides a no-code FLP services for protecting the contents of flat files.
- DPM easyData API – provides low-code FLP services to any application supported by any database.
- Tokenization by replacing data with tokens of the same size and type (conserving the format)
- Tokenization in multiple languages for text data
- Data Masking
- Integration with DPM Database Manager to tokenize and protect column level data in a database with no application code changes required
- Full auditing of all console and engine operations
- Configurable performance monitoring with alerts via syslog and email
- Industry standard AES-256 encryption with full-lifecycle key management. FIPS 140-3 L3/4 & Common Criteria EAL 4+/5+ certified HSM support
- Single sign-on, role based and fine-grained access control
- Ease of Deployment and Use
- Localization
Supported databases for DB Connector: – Oracle 19c Std and Ent – Microsoft SQL Server 2016 and up | Supported backend databases for DPM easyData: – MySQL 8.0 – MS SQL server 2019 and up – Maria |
Supported environments for Database Clientless: – Maria – Oracle – MS SQL Server – MySQL – Postgres | Supported environments for DPM easyData: – Windows 2019 and up – RedHat Linux, CentOS, Oracle Linux – Physical and virtualized environments |
DPM easyData is highly flexibile and can protect and tokenize many different types of data via customizable, user-defined formats. Examples include:
- Credit card and other payment card numbers
- Names – surnames, first names, street names, suburbs
- Bank account numbers, Tax File Numbers,
- Phone numbers – mobiles and landlines
- Post codes and ZIP codes
- Identification numbers – drivers’ licence and passport numbers
- Dates – birth dates, join dates
- Currency amounts – salaries, bank account amounts, transaction amounts
- Social security, national security, and Medicare account numbers
Latest news and articles
Why Traditional Defenses Are No Longer Enough to Protect Your Data
Many businesses continue to rely heavily on traditional security measures like firewalls, antivirus programs, physical security, auditing, and access controls to safeguard their data. While
The Importance of Encryption in Today’s Cybersecurity Landscape
Cyber threats are constantly evolving, and traditional defenses like firewalls and antivirus software are no longer enough to fully protect your business. While these tools
Wide-ranging attacks against Barracuda appliances linked to China
This week the news broke that Mandiant (an incident response firm) attributed the recent cyberattack campaign targeting customers utilizing Barracuda’s Email Security Gateway to hackers