Mais conteúdo relacionado
Mais de MarketingArrowECS_CZ (20)
Bezpečnost a šifrování dat umístěných v cloudu
- 2. © 2016 Cloud4com, a.s. All rights reserved.
Bezpečnost a šifrování dat umístěných v cloudu
Jiří Vrbický
VIRTUALIZATION FORUM 2018
- 6. © 2018 Cloud4com, a.s. All rights reserved. www.cloud4com.com
Trusted Platform – Intel TXT & Attestation
vMotion*
Protected VM
Trusted Untrusted
- 7. © 2018 Cloud4com, a.s. All rights reserved. www.cloud4com.com
Cloud4com Virtual Private Data Center (vPDC) concept
SSL VPN
Internet
vPDC
Customer Portal
IT
Administrator
Customer Cloud4com, a.s. Service Provider
Customer
Requests
Infrastructure
Orchestration
vServers
vRouter
VLAN A - Production
VLAN B - Development
NAS
Appliance
Customers
Application Access
Physical Server
- 9. © 2018 Cloud4com, a.s. All rights reserved. www.cloud4com.com
Role-based User Access
- 13. © 2018 Cloud4com, a.s. All rights reserved. www.cloud4com.com
Gemalto Platform for Data Encryption
• Why Gemalto?
– Trusted vendor with real references
– Provide higher security on shared platform
– Flexible cloud-based model
– Independent Key Management platform with KMIP support
– Provide Key Management Server as Virtual Appliance
– Easy to deploy and manage solution for data encryption
– Product for transparent data encryption in Virtual and Physical Server
– Product for data encryption on File System and NAS
– High-speed network traffic encryption on L2
– Encryption connectors for mainstream DBs, APP development
– Proof-of-Concept / DEMO for Our Customers is Available
- 14. © 2018 Cloud4com, a.s. All rights reserved. www.cloud4com.com
Cloud Security with Gemalto
SafeNet KeySecure
Centralized Key Management and Crypto Engine
Physical & Virtual Appliance
Unstructured Data Encryption
Structured Data Encryption
Data in Transit Encryption
NAS & File
Encryption
ProtectFile
Application Data
Encryption (API)
ProtectApp
Transparent
Data Encryption
Data-at-Rest
Virtual & Physical
Server Encryption
ProtectV
Database
Encryption
ProtectDB
Layer 2 Network
Encryption
Network Encryptors
Key Manager
- 15. © 2018 Cloud4com, a.s. All rights reserved. www.cloud4com.com
VMware vSphere/ESXi
Encryption of Virtual Servers
Customer Portal
IT
Administrator
Customer Cloud4com, a.s. Service Provider
Remote Management through ProtectV
Manager - https (SSL VPN, IPSec, …)
Customer
Requests
Infrastructure
Orchestration
Security
Department
Export / Backup
Virtual Private Data Center
(vPDC)
Virtual & Physical
Servers
Management
SafeNet ProtectV Clients
SafeNet ProtectV ManagerSafeNet KeySecure
KeySecure
- 16. © 2018 Cloud4com, a.s. All rights reserved. www.cloud4com.com
SafeNet KeySecure / Virtual KeySecure
• Centralized Key Management
• Centrally manages symmetric, asymmetric keys and certificates
• Generate, Export, Import, Destroy, Backup/Restore, etc.
• Support KMIP Standard
• Built-in key rotation – versioned keys
• Crypto Engine
• Encryption & Decryption Services
• Configurable for offload or local crypto
- 17. © 2018 Cloud4com, a.s. All rights reserved. www.cloud4com.com
SafeNet ProtectV Encryption Status
- 20. © 2018 Cloud4com, a.s. All rights reserved. www.cloud4com.com+420 734 649 949 sales@cloud4com.comwww.cloud4com.com