Solutions for Cloud Service Providers
From secure boot of a virtual machine image to authenticated objects in an object store KSI is a an essential requirement to ensuring reliable data in a cloud environment.
The business benefits of cloud computing are clear for most organizations. However, it is also understandable that the same organizations can be wary of moving their critical data and applications to the cloud, especially to a multi-tenant hosted cloud infrastructure where trust relations are based only on good faith and service contracts.
Data Authentication for Logfiles | Authenticate every event in a log file
Data Authentication for Object Store | Replicate tamper-evident WORM storage in the cloud
Disaster Recovery as a Service | SLA-based business continuity in a cloud
Our solutions are delivered as a part of Guardtime partners’ cloud security stack, please see the list of Service Providers who offer Guardtime solutions or contact us to become a partner yourself.
Data Authentication for Virtual Machines
Three dimensions of validation for virtual machines:
Integrity: Has this virtual machine been changed since it was originally approved?
Origin: Has this virtual machine been created by the required entity?
Organizations are alerted to operating exceptions when the virtual machine image does not meet one or more above checks and pre-defined measures can be triggered.
Solution Benefits:
- Virtual Machine Tampering is Impossible to Conceal
Enables companies to safely host applications and data in the cloud with the proof to back up the claim that the environment is intact and has not been compromised. .
- Protection Against Insider Attacks
GuardTime Clean State Proof prevents accidental and malicious tampering by employees, providers, and partners from going unnoticed.
- Audit Trail
The Internal Audit team can run a daily audit on all their activity across their virtual machines, doing so independently from the cloud operator or system administrators.
- Internal and Regulatory Compliance Strength
As keyless signatures are portable, the signed virtual machines and applications can be verified electronically, wherever they run, without loss of compliance strength.
- Reduced Risk of Liability
By having only tested, approved and signed virtual machines running within the virtual environment, the source and method behind any error, compromise, and loss cannot be questioned.
- Safe Backup or Migration of Virtual Machines
Authenticate virtual machine state and provide a tamper-evident audit trail when backing up or suspending the virtual machine and sending it into another data center.
Further Information:
Contact us for more info
Data Authentication for Logfiles
Allow organizations using cloud infrastructure to ensure that all electronic and online transaction logs are signed as they are created and stored.
The approach enables terabytes, even petabytes or zetabytes, of log data to be signed over decades at a fraction of the cost compared to traditional key-based technologies.
With these capabilities, organizations obtain and securely maintain the required forensic proof to solidify legal stances against intentional and unintentional insider attacks as well as external breaches, and other transactional-oriented fraud.
Solution Benefits:
- Maintain Control
Maintains strong level of internal control by reducing the threats associated with internal log tampering.
- Internal and Regulatory Compliance Strength
As keyless signatures are portable, the signed virtual machines and applications can be authenticated electronically, wherever they run, without loss of compliance strength.
- One-click Deployment
The most basic set up signs all electronic and online transaction logs as they are created and stored, without exception, with just one click.
- Reduced Cost
Reduces cost of signing terabytes of log data to a fraction of the cost of traditional key-based technologies
Further Information:
Contact us for more info
Data Authentication for Object Stores
Gives cloud infrastructure users three dimensions of validation for object stores:
Integrity: Has this object been changed since it entered the object store?
Origin: Has this object been created by the required entity?
Organizations are alerted to operating exceptions when the object does not meet one or more above checks and pre-defined measures can be triggered.
Solution Benefits:
- Reduced Risk of Liability
By having an independent mathematical audit trail for all hosted data, hosting providers are indemnified from to tampering claims while data is under their watch. The source and method behind any error, compromise, and loss cannot be questioned.
- Simplified Service Level Agreement (SLA)
With indemnification from claims against data tampering the need for pages of legal documentation is gone.
- Regulatory Complaint Archiving
Total Cost of Ownership of a 100TB EMC Regulatory Compliant Archiving solution: 500,000 USD
Total Cost of Ownership of a 100TB GT Enabled Cloud Regulatory Compliant Archiving solution: 100,000 USD
- Protection Against Insider Attacks
Prevents accidental and malicious tampering by employees, providers, and partners from going unnoticed.
- Audit Trail
The Internal Audit team can run a daily audit on all their activity across all stored data, doing so independently from the cloud operator or system administrators.
- Internal and Regulatory Compliance Strength
As the Clean State Proof keyless signatures are portable, the signed objects can be verified electronically, wherever they go, how ever many servers they have been through and whose ever hands they have gone through without loss of compliance strength.
- Regulatory Transparency
With an independent mathematical audit trail for all hosted data, regulators, citizens, clients and partners get complete proof that the hosted data is authentic.
Further Information:
Contact us for more info
Disaster Recovery as a Service
Guardtime’s Disaster Recovery as a Service (DRaaS) solution offers seamless SLA-based business continuity, efficient capacity expansion and data integrity protection for businesses and governments running their services in a cloud.
When devising a cost-effective disaster recovery solution for server-based applications, providers that offer one-to-one server redundancy can be very costly while traditional providers with many-to-one schemes might expose businesses or leave specific applications without capacity.
But by partnering with a DRaaS provider that relies on virtualized infrastructure, enterprises can both lower disaster recovery costs while also gaining the ability to expand disaster recovery capacity when necessary.
Solution Benefits:
- Guaranteed Business Continuity
Assess your business risks and select appropriate SLA to guarantee that the risks from the downtime are properly mitigated.
- Scheduled Backup Operations
Automatic backups to exactly match your business needs in backup frequency and location.
- Instantaneous Restore
When disaster strikes, you’ll want the restore operations to be near-realtime, minimizing the downtime and data loss.
- Confirm Enforcement of Operating Policies
Be able to prove that your security and integrity measures have worked and have evidence that your event logs have not been tampered with.
- Authentication of the Backup Data
With three dimensions of validation offered by Clean State Proof technology, you can be always sure that the backup data is authentic, authorized and in its original form.
Further Information:
Contact us for more info