1© SafeNet Confidential and Proprietary

Closing Virtual Datacenter Security Gaps

“In the virtual realm, especially when one does not have direct access to the environment, there is just one way to protect data: full VM encryption.”

- Peter Stephenson, SC Magazine“ ”

2

We protect the most money that moves in the world, $1 trillion daily

We protect the most digital identities in the world

We protect the most classified information in the world

We are a Magic Quadrant Leader for Authentication

REVENUE

~$500m

GLOBAL FOOTPRINT

+25,000Customers in100 countries

ACCREDITED

Products certifiedto the highest security standard

130 FIPS Certificates

EMPLOYEES

+1,500550+ CryptoEngineers

3

StoredStructured and UnstructuredStored and Archived Data

ProductionDatabase, file sharesPAN, Payments, PII

Wherever your Data Goes…...SafeNet Keeps it Secure

Secure Space CommunicationsUplink command encryption

AccessMutlifactor Authentication, SSO, entitlement/software rights management

Private, Public and Hybrid Clouds

Virtualized

Secure CommunicationsHigh Speed Encryption, Ethernet, SONET

Key Management /Root of Trust

4

Virtualization Risks

How secure is my data in a virtualized world?

VMs are easy to copy (and steal).

VMs are easy to move.

VMs introduce a new class of privileged users and administrators—server, storage, backup, and application—all operating independently.

VMs have multiple instances, snapshots and backups of data.

And what about your Disaster Recovery site?

APP APP APP APP

OS OS OS OS

Hypervisor

Compute Layer

Storage

Backup

Snapshots Snapshots

6

Data Protection for Virtual Environments

ProtectV is the industry’s first comprehensive high-assurance solution for solving critical challenges of security, governance and control of data in a virtual infrastructure or cloud.

7

Anatomy of Securing a Virtual Datacenter

KeySecure3

ProtectV Manager2

ProtectV Client1

Virtual Machines

ProtectV Client is installed on your VMs.

ProtectV Manager is a virtual machine that runs as a VM in a VMware environment.

KeySecure is a hardware-based high-assurance enterprise key management solution.

Protected Disks

VMware ESX Server

Storage

8

ProtectV: Secures the Entire VM Lifecycle

Every day that you power on VMs, ProtectV makes it efficient, fast, and automated

You must be authenticated and authorized to launch a VM

All data and VMs are encrypted

Every time you delete a key, it “digitally shreds” the data, rendering all copies of VMs inaccessible

Every copy of VM in storage or backup is encrypted

Power On

Start

Daily OperationsSnapshot

Delete

1

2

34

5

9

ProtectV Delivers Complete VM Encryption

9

Encryption of entire VM

Encryption of system/OS partition

Encryption of data partition

Encryption of associated snapshots

and backups (DR sites etc.)

Entire VM is encrypted

Secured Volumes

Secured VMs

10

ProtectV Delivers Ownership & Control of Your Data

Pre-launch user authorization to

access a VM

Separation of duties between

storage, VI and security

administrators

Hardware-based FIPS 140-2 level 3

certified Enterprise Key Manager

Pre-Launch Authentication

Secured VMs

On-Premise EKM

11

ProtectV Delivers Visibility & Proof of Data Governance

Unified management - at-a-glance dashboard view and

central audit point

On-premise key management audit for encryption keys

12

Closing Virtual Datacenter Security Gaps

Certified by VMware

Comprehensive encryption of VMs and storage

Solves critical challenges of security, governance and control of data in a virtual

infrastructure or cloud

13

Learn More