Fortanix for Rubrik

Secure your Rubrik data management platform from ransomware attacks and achieve privacy compliance with Fortanix Data Security Manager.

Download Solution Brief

Request a Demo

secure rubrik data management

Problem

There is a wealth of sensitive information lying within your backup systems. The power of this data can be unlocked only if its unbreachable. There were nearly 200 million ransomware attacks in the third quarter of 2020 alone. Evolving ransomware attacks targeting backup files has warranted the IT managers and security teams to implement secure encryption of the backup data and the need for a comprehensive data protection platform that does not compromise on storage efficiency is ever increasing.

how fortanix solve problem for rubrik

Solution Overview

There is a wealth of sensitive information lying within your backup systems. The power of this data can be unlocked only if its unbreachable. There were nearly 200 million ransomware attacks in the third quarter of 2020 alone. Evolving ransomware attacks targeting backup files has warranted the IT managers and security teams to implement secure encryption of the backup data and the need for a comprehensive data protection platform that does not compromise on storage efficiency is ever increasing. Fortanix DSM is the world’s first cloud solution secured with Intel® SGX. With Fortanix DSM, you can securely generate, store,and use cryptographic keys and certificates, as well as secrets, such as passwords, API keys, tokens, or any blob of data. Fortanix integrates with Rubrik Data Management Platform using KMIP to provide customers with an FIPS 140-2 level 3 certified external key management service. This provides customers within regulated industries like Finance, Healthcare and Government the highest level of data security in a cost-effective way and helps comply with specific regulations that warrant organizations to store the Key encryption keys (KEKs) outside in an external key management service.

How the Solution works?

The joint Rubrik and Fortanix solution provide a unified data security platform that includes immutability, RBAC, and full enterprise key lifecycle management, a FIPS 140-2 level 3 HSM, encryption to protect backup data from ransomware and data breaches. The solution also helps avoid regulatory penalties from General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other privacy regulations.

The Fortanix DSM integrates seamlessly with Rubrik to secure data across multiple public clouds, hybrid, and on-premises environments. The Key Management Interoperability Protocol (KMIP) is used to facilitate communication between the Rubrik cluster and Fortanix DSM. KMIP uses Transport Layer Security (TLS) to provide a secure connection and Fortanix DSM also uses this to authenticate a KMIP client to successfully create, retrieve, and use the keys stored inside Fortanix DSM.

The X.509 certificates are used to facilitate the communication and authentication for both Fortanix DSM and the Rubrik Cluster. Fortanix DSM is deployed with a server certificate that is signed by the internal Certificate Authority (CA).

The username and password from Fortanix DSM can be used for authenticating the Rubrik cluster, or alternatively, a client certificate for the Rubrik cluster can be created using tools such as OpenSSL. The certificate may be signed externally or can be self-signed.

Ransomware Diagram

PROTECTION AGAINST RANSOMWARE

The Encryption keys for backup and Rubrik Credentials are always secured in Fortanix HSM, providing protection against Ransomware.

Fortanix-logo

4.6

star-ratingsgartner-logo

As of August 2023

SOC-2 Type-2ISO 27001FIPSGartner LogoPCI DSS Compliant

US

Europe

India

Singapore

3910 Freedom Circle, Suite 104,
Santa Clara CA 95054

+1 408-214 - 4760|info@fortanix.com

High Tech Campus 5,
5656 AE Eindhoven, The Netherlands

+31850608282

UrbanVault 460,First Floor,C S TOWERS,17th Cross Rd, 4th Sector,HSR Layout, Bengaluru,Karnataka 560102

+91 080-41749241

T30 Cecil St. #19-08 Prudential Tower,Singapore 049712