Overview
The partnership forged between Fortanix Data Security Manager (DSM) and CyberArk PAM solutions, leverages runtime encryption™ and Intel® SGX in a FIPS-compliant HSM to maximize the security and availability of encryption keys used to access safes or files within the CyberArk solution to ensure confidentiality, integrity, and availability of critical enterprise data.
The Challenge
Insider threats remain the single most challenging entity to defend against when it comes to thwarting cybersecurity concerns, and unauthorized access to cryptographic keys remains the most widely used tactic by threat actors. Businesses need cryptography to secure their data and HSMs to secure their cryptography.
Why Integrate Fortanix with CyberArk
Encrypting data is only half the battle won—where you keep the encryption keys is what makes your security strategy a cut above the rest. Powered by Intel® SGX, Fortanix FIPS 140-2 Level 3 certified HSMs ensure your keys remain secure across their lifecycle- at-rest, in-transit, and in-use.
How the Joint Solution Works
The integration between Fortanix Data Security Manager and CyberArk PAM delivers enhanced security and availability for encryption keys used to access safes or files within the CyberArk solution to ensure confidentiality, integrity, and availability of critical enterprise data.
Fortanix Data Security Manager leverages Runtime Encryption™ and Intel® SGX in a FIPS 140-2 L3 compliant HSM to deliver deterministic security for encryption keys. The Fortanix HSMs are based on a multiple-cluster SaaS architecture. Each cluster resides in separate data centres to support a high-availability architecture and minimize latency. Keys are replicated automatically to eliminate a single point of failure and intelligent load-balancing service automatically accesses the nearest key management service.
Highlights
FIPS 140-2 Level 3 Compliant HSMs
Tamper-resistant with high assurance, superior performance and certified to the rigorous FIPS 140-2 level 3 cryptography standard.
Simplified Operations
The joint solution requires minimal setup, minimal expertise to operate, and can integrate with your existing systems.
Lower TCO
Using HSMs/KMS with your PKI will prevent key compromise issues that lead to expensive fines and remediation costs.
High Availability and Security
The joint solution is an HSM-backed PKI management system that is highly available, secure, and has disaster recovery capabilities.
Specific Compliance Control
FIPS certified HSM and Key management with regional level isolation helps meet specific data privacy regulations.
About CyberArk Solution
CyberArk PAM solutions holistically secure both standing and just-in-time privileged access across the IT estate, measurably reducing the #1 source of cyber risk: compromised identities and credentials. With PAM, organizations can discover and securely manage privileged accounts, isolate and monitor remote sessions, and detect and remediate suspicious activity.
Through integration with the industry’s most complete Identity Security platform, CyberArk PAM solutions enable operational efficiencies by extending access management, intelligent privilege controls, and identity management to the unique needs of workforce users, third-party vendors, endpoint and machine identities.
With CyberArk’s industry-leading integration support and prescriptive guidance based on 8000+ customer deployments, helping customers rapidly achieve their security, audit and compliance objectives.
The Fortanix Solution
Fortanix Data Security Manager is a unified data security platform that helps security, data, risk management, and DevOps teams to work together and simplify cryptographic operations to protect sensitive data. Fortanix takes a data centric approach to cybersecurity that minimizes expensive data breaches and accelerates regulatory compliance.
Key Benefits
The integration of the CyberArk PAM Solutions with Fortanix Data Security Manager further bolsters the security of the cryptographic keys used to access safes or files within the CyberArk Solution. Fortanix HSM ensures:
- Highest levels of physical and software-backed security
- Compliance with org policy as well as industry standards (ex: FIPS, PCI)
- Foolproof security – keys never leave the HSM
About CyberArk
CyberArk is the leading Identity Security provider, helping organizations secure access to critical business data and infrastructure, protect a distributed workforce and accelerate business in the cloud. Built on a foundation of intelligent privilege controls, CyberArk has evolved to protect against the leading causes of breaches: compromised human and machine identities and credentials.
About Fortanix
Fortanix secures data, wherever it is. Fortanix’ data-first approach helps businesses of all sizes to modernize their security solutions on-premises, in the cloud and everywhere in between. Enterprises worldwide, especially in privacy-sensitive industries like healthcare, fintech, financial services, government, and retail, trust Fortanix for data security, privacy and compliance. Fortanix investors include Goldman Sachs, Foundation Capital, Intel Capital, In-Q-Tel, Neotribe Ventures and GiantLeap Capital. Fortanix is headquartered in Santa Clara, CA. For more information, visit https://www.fortanix.com.