Blog
How to protect your applications on public and private clouds using Fortanix Runtime Encryption®
In this blog we will describe common application threats and how Fortanix Runtime Encryption® protects application assets from these threats on untrusted platforms including public cloud. We will use a 3-tiered application as an example with Nginx as the front-end load balancer tier, Python Flask as the application server tier and MariaDB as the data tier.
Posted by Nehal Bandi on December 3rd, 2018
Fortanix and IBM Cloud extend cloud security collaboration with new Data Shield powered by Runtime Encryption®
Today, we are taking the next step on our journey to bring Runtime Encryption® to the cloud by announcing the experimental release of IBM Cloud Data Shield.
Posted by Andy Leiserson on November 05th, 2018
SDKMS is now available on Alibaba Cloud!
Fortanix is delighted to partner with Alibaba Cloud. We have seen multiple customers reach out to us about the best practices of securing their sensitive digital assets while operating overseas. Intel® SGX offers the incredible level of security by removing the cloud provider and infrastructure entirely from the trust boundary. Alibaba Cloud launched commercial Intel® SGX cloud servers as ECS bare metal instances in April 2018.
Posted by Ambuj Kumar and Anand Kashyap on Oct. 16th, 2018
Never bring a knife to a gunfight!
The Big Hack demonstrates that the cyber warfare has moved from the realm of the software to the realm of the hardware. Software-based security, such as anti-malware, firewall, user behavior analysis, network flow analysis, etc. are ineffective in the face of such sophisticated attacks.
Posted by Anand Kashyap and Imam Sheikh, Head of Security Products - Equinix on Oct. 9th, 2018
How to Protect Sensitive Data in Virtual Environments
Today, we are excited to announce that Fortanix Self-Defending Key Management Service (SDKMS) has achieved VMware Ready status for vSphere and vSAN. The joint VMware and Fortanix SDKMS solution offers scalable data protection and compliance for software-defined data center and cloud environments.
Posted by Ketan Shah on August 28th, 2018
HSM Security with Cloud Like Economics
I have spent over a decade helping customers derive value from HSMs (Hardware Security Modules). HSM deliver confidentiality for encryption keys in a physically hardened appliance, protecting against insider and external threats.
Posted by Bill Hagerstrand on June 28th, 2018
Why we chose Intel® SGX to power Runtime Encryption
Various security technologies are currently available from vendors such as AMD, Intel, ARM, and Microsoft. How do you choose which one to use? In this post I'll explain the main reasons Fortanix® chose Intel® SGX.
Posted by Jethro Beekman on June 19th, 2018
Findings from Fortanix’s RSA Conference Cloud Security Survey
The Fortanix team had a great RSA 2018 Conference. Starting with winning second place on Innovation Sandbox Contests and over the next few days at the Intel booth and Equinix booth, the Fortanix team had great discussions with hundreds of security architects, executives, and partners.
Posted by Ketan Shah on April 27th, 2018
Beyond the Basics: Protect your code and business logic with Runtime Encryption® Plugins
In conversations with customers, we find a strong demand to be able to run sensitive application logic and custom cryptographic schemes inside an HSM-grade trust boundary. To address this demand, Fortanix developed a Runtime Encryption® Plugin capability for Fortanix Self-Defending Key Management Service™ (SDKMS) and Equinix SmartKey™, powered by Fortanix.
Posted by Jeffrey Seyfried on April 11th, 2018
Why can't HSM and key management be provided to you as a managed service? Or can they?..
For historical reasons and technological barriers traditional HSM and key management did not, and still cannot, be delivered as a managed service. But what if they could be delivered as a secure, easy and simple to consume managed service?
Posted by Avishai Ziv on April 04th, 2018
How to protect Oracle and Microsoft SQL Databases using SDKMS with Transparent Data Encryption
While encryption remains an effective data protection control, it is increasingly difficult to use to protect databases given rapid data growth, clustering of databases and distribution of databases across geographies, across clouds.
Anand Kashyap on February 28th, 2018
5 Things you need to know about Side Channels and Runtime Encryption® with Intel® SGX
At Fortanix we are building a new class of solutions called Runtime Encryption, leveraging Intel® SGX, to protect applications and data in use. We often receive inquiries about the impact of side channel attacks on Intel® SGX and Fortanix solutions.
Andy Leiserson on February 14th, 2018
How to encrypt data at rest on AWS, Azure, and Google Cloud block storage using Fortanix SDKMS
One of the challenges to implementing data at rest encryption is the need for robust key management. Solutions dealing with sensitive or high-value data require the use of a hardware security module (HSM).
Nehal Bandi on January 29th, 2018
Fortanix and IBM partner on Runtime Encryption® to bolster Trust in Cloud Computing
Fortanix is pleased to collaborate with IBM to offer an early access of the IBM Cloud Data Guard preview that firmly tips the balance in favor of cloud. IBM Cloud Data Guard offers applications the protection of data in use and is powered by Fortanix’s Runtime Encryption® platform.
Ketan Shah on December 19th, 2017
Fortanix and Equinix Collaborate to launch Equinix SmartKey™ Beta program
Earlier this year, Fortanix launched a radical new technology based on Intel’s SGX, delivering Runtime Encryption® to protect applications and data in use. Today, we are excited to announce our collaboration with Equinix to launch the Equinix SmartKey™ public beta program, industry’s first HSM-as-a-Service.
Anand Kashyap on November 28th, 2017
