nCipher Security has announced nShield as a Service, a cloud-based hardware security module (HSM) service aimed to protect sensitive data and applications and helps meet compliance mandates – using on-demand cryptography.
nShield as a Service uses nShield HSMs to generate, access and protect cryptographic key material separately from sensitive data. All nShield HSMs are managed through nCipher’s Security World key management architecture that spans cloud-based and on premises HSMs.
Peter Galvin, vice president of strategy, nCipher Security, said: “Healthcare institutions typically store and process multiple kinds of healthcare data, from images and emails to medical records and payment information, which is stored on multiple devices, runs on multiple operating systems and is accessed by multiple users in multiple places. With an increasing exchange of healthcare data across clinical applications, devices and facilities and attackers becoming more sophisticated, healthcare organisations must bolster their healthcare data security and compliance efforts. nShield as a Service simplifies this process by protecting encryption keys in the cloud so the industry is able to efficiently protect its sensitive data and reduce the risks associated with holding confidential patient information.
“Organisations embracing cloud-first strategies require cloud-first encryption. This means remote, automated management at scale, and flexible access control both in the cloud and onsite. nShield as a Service makes it easy to adopt a secure, multi-cloud encryption strategy using the same nShield HSMs organizations deploy onsite today.”
Users interact with the cloud-based nShield HSMs in the same way as with nShield appliances in their own data centres.
- implement Bring Your Own Key and Host Your Own Key solutions with a trusted third party service
- maintain full control over key material and maintain separation of data from the encryption keys
- extend cloud-based cryptography and key management across multiple clouds
- implement secure code execution for cloud-based workloads
- integrate with third party applications in the cloud
Robert Westervelt, research director, security products, IDC, said: “Encryption is a powerful tool. Delivering it easily across distributed infrastructure can be very effective in protecting data and applications against cyberattacks. Solutions such nShield as a Service allow even the largest organisations to secure their public cloud workloads with all the conveniences of software-as-a-service offerings. Now, there are no excuses for not using encryption in the cloud.”