VORMETRIC TOKENIZATION SOLUTIONS

With Dynamic Data Masking

Efficiently De-Identify Sensitive Data and Reduce PCI DSS Scope

For today’s IT teams, the time and effort it takes to comply with corporate security policies and compliance mandates like the Payment Card Industry Data Security Standard (PCI DSS) continues to increase—but budgets, resources, and staffing do not. While PCI data tokenization offers the potential to help security teams more efficiently address a wide range of security and compliance objectives, traditional tokenization tools have prohibited organizations from capitalizing on these advantages.

Now, Vormetric offers a better way. Vormetric Tokenization with Dynamic Data Masking helps your security team address its compliance objectives while gaining breakthroughs in operational efficiency. For example, you can tokenize primary account numbers and remove databases from PCI DSS audit scope—and do so with minimal disruption and administrative overhead. Plus, by offering persistent security controls, high performance, and predictable per-server pricing, the PCI data tokenization solution enables your organization to expand its use of tokenization, including in large-scale cloud and big data environments.

Vormetric Tokenization makes it easy to use format-preserving tokenization to protect sensitive fields in databases. The tokenization solution features two alternatives:

  • The Vormetric Token Server can be employed when a secure token vault is required.
  • The Vormetric Vaultless Token Server can be used in environments that require the highest performance and scale.

Both the vault and vaultless Token Server options are virtual appliances that tokenize records and manage access policies to tokens and clear-text data. With both the vault and vaultless Token Server, applications use REST APIs to send tokenization requests, which streamlines the process of implementing and managing tokenization. In addition, these products eliminate the complexity of adding policy-based dynamic data masking to applications because it is native to the solution offering.

The Vormetric Vaultless Token Server can tokenize sensitive data and dynamically mask tokenized fields according to defined policies.

Vormetric Tokenization Key Attributes

  • Streamlined application integration.The Vormetric Tokenization solution employs tokenization at the application layer and it streamlines all the application development efforts associated with implementing tokenization in an enterprise.
  • Dynamic data masking. Administrators can establish policies to return an entire field tokenized or dynamically mask parts of a field. For example, a security team could establish policies so that a user with customer service representative credentials would only receive a credit card number with the last four digits visible, while a customer service supervisor could access the full credit card number in the clear.
  • Non-disruptive implementation. With the Vormetric Tokenization solution’s format-preserving tokenization capabilities, you can restrict access to sensitive assets without changing the existing database schema. The REST API implementation makes it fast, simple, and efficient for application developers to institute sophisticated tokenization capabilities.
  • On-demand scalability. The Vormetric Vault and Vaultless Token Servers run as virtual appliances that can be added and removed to accommodate changing performance requirements.

Vormetric Tokenization solutions are part of the Vormetric Data Security Platform, which means you can leverage a single platform for tokenization, encryption, key management, and privileged user access control. As a result, you can employ the mix of technologies that’s optimally suited to your specific projects and use cases, while gaining the cost savings and operational benefits of working with solutions that can be uniformly managed. With Vormetric Tokenization solutions, you can work with one platform and one vendor, and avoid unpredictable costs and complex support models.

VIDEO

Demo: Vormetric Tokenization with Dynamic Data Masking

In four minutes learn about the Vormetric Data Security Platform and how Vormetric Tokenization protects your sensitive data...

Watch Now >>

GARTNER NEWSLETTER

Tokenization Research Study

Tokenization Research Study

Tokenization Research Study
Market Guide for Merchant/Acquirer
Tokenization of Payment Card Data

Access Report >>

ANALYST QUOTE

 Technologies like tokenization reduce compliance scope by replacing sensitive data with a non-sensitive token that looks and acts like the original. This means you get data protection without the need to change your databases. Once sensitive data is replaced with the token, these systems are no longer subject to compliance, meaning a lot less work for IT and compliance teams. 

Adrian Lane,
Analyst and CTO,
Securosis
 

SOLUTION BRIEFS

Encryption Architecture

Vormertic Data Security for PCI DSS 3.0 Compliance

Download >>
Encryption Architecture

Vormetric Tokenization with Dynamic Data Masking

Download >>

DATA SHEETS

Vormetric Data Security Platform Data Sheet

Vormetric Data Security Platform

Download >>

WHITE PAPERS

Vormetric Data Security Platform Data Sheet

Vormetric Tokenization with Dynamic Data Masking

Download >>

2016 DATA THREAT REPORT

Customer and Partner Success

  • Rackspace Cloud Partners
  • McKesson
  • AWS
  • Google Compute Engine
  • Microsoft
  • IBM
  • CenturyLink
  • QTS
  • Teleperformance Secures
  • Delta Dental