SecurDPS is an on premise enterprise wide tokenization and encryption solution which provides the technology to successfully protect sensitive data with minimal efforts and in many cases without changing existing applications. SecurDPS allows organizations to take complete control of their sensitive data, lower compliance costs and significantly reduce the impact of data breaches.
SecurDPS has evolved from comForte's HPE NonStop focused SecurData tokenization solution (SecurData is at the heart of SecurDPS, learn more) which meanwhile has become the most widely used tokenization solution on these mission critical HPE NonStop systems.
The basis for the SecurDPS product suite is the flexible and sophisticated integration framework which allows introducing additional data protection layers for existing and new applications, in many cases even without changing any code in the respective application.
These protection layers supported by SecurDPS can range from auditing of which user accessed a specific database record, to fully protecting sensitive elements or files with stateless tokenization or encryption, optionally combined with key protection in Hardware Security Modules (HSMs) and split-knowledge, dual control mechanisms. In addition, SecurDPS can also be seamlessly integrated with enterprise data protection solutions such as HPE SecureData. In combination with another enterprise protection solution, SecurDPS can provide the transparent integration capabilities for the other protection solution.
In order to provide maximum flexibility, SecurDPS is offered with various modules to allow companies to easily find the optimal solution for their specific protection needs.
Contact us to speak to a product specialist and to discuss how SecurDPS - the Data Protection Suite can help you secure your environment.
Records Lost Since 2013: 5.3 Billion (5,329,418,398)
To put this into perspective, that is approximately:
Data gathered from public sources and based on breachlevelindex.com - updated 11 Nov 2016
Interactive map of attacks happening right now at:
Breaches by Industry since 2013
Breaches by Source since 2013
SecurDPS uses the HPE NonStop platform to run its core framework and all tokenization operations, basically acting in a similar role to a tokenization appliance. Due to its design for security and high availability, reliability and linear scalability, the HPE NonStop provides an optimal platform for the core framework and security sensitive operations like tokenization.
As depicted in the first diagram, the SecurDPS core on the HPE NonStop platform serves both local applications (e.g. Base24, Connex, etc) as well as other enterprise hosts with tokenization services. Enterprise hosts connect into the SecurDPS core on the NonStop over a secure connection using SSH. In combination with comForte's CSL product, enterprise applications can also use tokenization services via standard webservice protocols such as SOAP or JSON/REST. For more details see the SecurDPS Integration Options.
comForte's patented highly efficient tokenization algorithm is stateless (aka. vaultless), scales linearly and has been vetted by independent cryptologists who are well recognized experts in the industry. If you want to know more, please see here for details on the Tokenization engine of SecurDPS.
The actual integration of tokenization and encryption into existing and new applications can be performed in two ways:
The sophisticated application transparent integration capabilities allow you to introduce the protection layer of tokenization or encryption into existing application without any source code change or even if into 3rd party applications. This saves time, efforts and costs in implementation.
How does that work? See the detailed explanation of the SecurDPS integration options here
High performance tokenization with comForte's patented, stateless and independently security validated tokenization engine.
SecurDPS has been tested and is deployed at various sites running the Connex or Base24/Eps payment application. Specially crafted preconfiguration modules provides easy and proven integration for B24 and Connex.
SecurDPS can provide multiple protection layers for full protection at the file-level. File level protection for sequential file I/O can even be integrated into existing applications without any source code change required.
SecurDPS provides the classic integration approach via APIs, however in many cases application change is not even needed due to the application transparent integration capabilities.
With comForte's Format Preserving Hash (FPH) engine, password files or any other sensitive data elements that do not need to be protected in a reversible way, can be protected securely.
SecurDPS provides intelligent and transparent logging of access to sensitive data.
SecurLib enables the integration of SSL encryption into self-written TCP/IP applications. It also enables database encryption and easy access to cryptographic algorithms.
Client Server Link (CSL) is a middleware that allows clients on any platform to access Pathway applications running on HPE NonStop servers.
PANfinder™ is a comprehensive PAN data discovery software solution which scans systems for any unprotected PAN data.