Vormetric Tokenization

Vormetric Tokenization

Efficiently De-Identify Sensitive Data and Reduce PCI DSS Scope

For today’s IT teams, the time and effort it takes to comply with corporate security policies and compliance mandates like the Payment Card Industry Data Security Standard (PCI DSS) continues to increase—but budgets, resources, and staffing do not. While PCI data tokenization offers the potential to help security teams more efficiently address a wide range of security and compliance objectives, traditional tokenization tools have prohibited organizations from capitalizing on these advantages.

Now, Vormetric offers a better way. Vormetric Tokenization with Dynamic Data Masking helps your security team address its compliance objectives while gaining breakthroughs in operational efficiency. For example, you can tokenize primary account numbers and remove databases from PCI DSS audit scope—and do so with minimal disruption and administrative overhead. Plus, by offering persistent security controls, high performance, and predictable per-server pricing, the PCI data tokenization solution enables your organization to expand its use of tokenization, including in large-scale cloud and big data environments.

Vormetric Tokenization makes it easy to use format-preserving tokenization to protect sensitive fields in databases. The tokenization solution features two alternatives:

  • The Vormetric Token Server can be employed when a secure token vault is required.
  • The Vormetric Vaultless Token Server can be used in environments that require the highest performance and scale.

Both the vault and vaultless Token Server options are virtual appliances that tokenize records and manage access policies to tokens and clear-text data. With both the vault and vaultless Token Server, applications use REST APIs to send tokenization requests, which streamlines the process of implementing and managing tokenization. In addition, these products eliminate the complexity of adding policy-based dynamic data masking to applications because it is native to the solution offering.

The Vormetric Vaultless Token Server can tokenize sensitive data and dynamically mask tokenized fields according to defined policies.

Vormetric Tokenization Key Attributes

  • Streamlined application integration.The Vormetric Tokenization solution employs tokenization at the application layer and it streamlines all the application development efforts associated with implementing tokenization in an enterprise.
  • Dynamic data masking. Administrators can establish policies to return an entire field tokenized or dynamically mask parts of a field. For example, a security team could establish policies so that a user with customer service representative credentials would only receive a credit card number with the last four digits visible, while a customer service supervisor could access the full credit card number in the clear.
  • Non-disruptive implementation. With the Vormetric Tokenization solution’s format-preserving tokenization capabilities, you can restrict access to sensitive assets without changing the existing database schema. The REST API implementation makes it fast, simple, and efficient for application developers to institute sophisticated tokenization capabilities.
  • On-demand scalability. The Vormetric Vault and Vaultless Token Servers run as virtual appliances that can be added and removed to accommodate changing performance requirements.

Vormetric Tokenization solutions are part of the Vormetric Data Security Platform, which means you can leverage a single platform for tokenization, encryption, key management, and privileged user access control. As a result, you can employ the mix of technologies that’s optimally suited to your specific projects and use cases, while gaining the cost savings and operational benefits of working with solutions that can be uniformly managed. With Vormetric Tokenization solutions, you can work with one platform and one vendor, and avoid unpredictable costs and complex support models.