Encryption key management

Patented next generation key encryption

Organizations are a target for hackers and malicious users as they store significant amounts of sensitive data in databases. There are many options for encrypting databases: natively available from database vendors like Oracle and Microsoft known as Transparent Data Encryption (TDE) or from Randtronics offering its version of TDE (DPM database agent) and DPM column level encryption, tokenization, masking, pseudonymization and anonymization.

Customers using native database TDE need to protect the master key for the database encryption at out of the box configuration as it is not totally secure. Usually to protect keys it is necessary to integrate TDE with an external hardware security module. This requires manual integration and configuration changes which differ from vendor to vendor and adds technical complexity. The better alternative is to use Randtronics DPM software security module offering key encryption and access control which simplifies the protection of the master keys for TDE. The integration is transparent and does not require any configuration or database changes. It also enables separation of duties between a security team and database administrators. DPM can support multi-vendor TDE databases types (Oracle or MS SQL server) from a single platform.

DPM also offers options to integrate with multi-vendor hardware security modules without code changes where higher key assurance and enterprise wide key and certificate management is required.

Further reading:

Latest news and articles

Wide-ranging attacks against Barracuda appliances linked to China

This week the news broke that Mandiant (an incident response firm) attributed the recent cyberattack campaign targeting customers utilizing Barracuda’s Email Security Gateway to hackers

June 16, 2023

Goodbye, Tina Turner

Sad news this week that the Queen of Rock ‘n’ Roll has exited the stage. Many of us at the Randtronics team grew up hearing

May 25, 2023

Don’t take an Uber to the Big House

In a groundbreaking development, the ex-security chief of Uber has been convicted for his failure to disclose a significant data breach that occurred at the

May 16, 2023

Our Customers

Contact us today and see how we can protect your business.

A business that only encrypts its data is more secure than one that only does everything else…

Quick Links

Randtronics LLC

Randtronics Pty Limited

Stay Connected

Randtronics © 2002 – 2021, All rights reserved.

Letter from the CEO

Thank you for visiting the Randtronics website.

We make enterprise encryption easy.

Smart businesses already know that only encryption can reduce the attack surface and stop the hackers from stealing their sensitive data. A company that only uses encryption is more secure than a company with all other cyber security measures. Privacy standards such as PCI DSS, HIPAA, and GDPR are all mandating in law the protection of the citizen’s personal data. Fines for breaches are huge. You won’t get fined if your firewall is hacked. You won’t get fined if you suffer a virus or ransomware attack. You WILL get fined if you lose ANY personal data pertaining to ANY citizen. The lowest common denominator is the DATA. Data that is “Encrypted” is out of the scope of the Law.

Whilst all understand the need to protect sensitive data holistically (such as NIST Cyber Security Framework or 12 prescriptive PCI DSS guidelines) their cyber security priorities are misguided to say easy aspects and not addressing “what happens” when these fail? Encryption of data is the only direct protection measure that renders data unreadable compared to upgrading firewalls or virus and malware, IPS, log monitoring, etc. I am saying you need all methods but unless you have implemented enterprise grade encryption you are still unprotected like driving a car without “seatbelts”. “Enterprise grade encryption” as a cyber measure is the “seat belt” that saves lives in car accidents. Industry experts predict a relentless continuation of data breaches this year and penetration testing have proven perimeter defense is easily penetrable.

Randtronics has taken the challenge to make encryption easy and is innovating in many areas. We have already reduced deployment effort to days, use familiar standard components so that less skilled people can deploy and maintain systems.
I welcome discussions via email or phone as through your feedback we will be challenged to continue to innovate to the point where businesses and users do not need to be intimidated when using encryption as the worlds most powerful tool to protect their sensitive data.

Experts predict data breaches will continue at relentless pace, let Randtronics secure your business with “Enterprise grade ubiquitous encryption technology”. Time is of the essence. Why not be pro-active? I invite you to let Randtronics and its global distributors and resellers assess and assist your business directly.

Yours sincerely,
Bob K Adhar, BE, MBA, CISSP
Founder and CEO