CipherCloud Launches Cloud Encryption Offering

As organisations continue to deal with the implications of the US National Security Agency (NSA) and its Internet surveillance efforts, interest in and demand for cloud encryption has increased. Just because data is encrypted doesn’t mean that enterprises should not be able to find what they’re looking for, which is where new features from CipherCloud come into play.

CipherCloud on Monday announced its Searchable Strong Encryption (SSE) offering, which aims to balance the need for access with the need for security.

Encryption gateway

Pravin Kothari, founder and chief executive of CipherCloud, explained to eWEEK that SSE leverages his firm’s encryption gateway. The CipherCloud encryption gateway encrypts data in real time as it flows from the user into the cloud. The gateway is a Linux-based virtual software appliance that can be deployed in a customer data centre or on-site at the enterprise.

The new feature that is now landing in CipherCloud is the ability to search the encrypted data. Once data is encrypted, by definition, that data has been protected and is typically not searchable. What the CipherCloud SSE technology provides is a way to search encrypted data.

Kothari explained that what CipherCloud has done is to put a search index directly in the CipherCloud encryption gateway. What CipherCloud indexes varies depending on what the data is and where it’s going. CipherCloud integrates with online storage vendor Box with online storage vendor Box and for those users CipherCloud indexes the entire document. For Salesforce.com, whatever customer data is being transmitted can be securely searched.

“We have a plug-in for each application, so we know how search and sort are done,” Kothari said.

From a user access perspective, CipherCloud enforces access control policies for the searchable encrypted data. The CipherCloud gateway verifies with the given application that a particular user has the right level of authorisation to access a specific piece of data.

“We work with the applications on the back end to make sure that access control policy is followed before any results are returned to the user,” Kothari said.

AES cryptography

CipherCloud uses 256-bit Advanced Encryption Standard (AES) cryptography to protect customer data on the gateway and in the cloud. Kothari explained that 256-bit AES is a symmetric encryption technology, which means the same key is used for encryption and decryption.

Getting data from the enterprise to the gateway and then to the cloud requires some form of encryption for the data in transport. CipherCloud uses standard Secure Sockets Layer (SSL) encryption from the gateway to the cloud, Kothari explained.

Among the revelations in the recent NSA leaks is that the agency has somehow managed to crack some SSL security as well. Kothari noted that CipherCloud recommends that customers use a cipher for SSL, known as Elliptic Curve Cryptography (ECC), which is fast and secure.

“If you look at the NSA disclosures in recent months, what has come out is that they are good at strong-arming cloud providers to get data in plain text,” Kothari said. “If you use strong encryption with strong key management, then the NSA is not able to get your data. There is no evidence in the last 10 years that AES has been cracked.”

Are you a security pro? Try our quiz!

Originally published on eWeek.

Sean Michael Kerner

Sean Michael Kerner is a senior editor at eWeek and contributor to TechWeek

Recent Posts

OpenAI Allows Staff To Sell $1.5 Billion Stock To SoftBank – Report

SoftBank is to acquire more OpenAI shares, after the AI startup allows staff to sell…

16 hours ago

UK’s FCA Confirms Plan For Crypto Regulation By 2026

British financial regulator outlines roadmap and timelines to implement regulatory oversight for 'high risk' crypto

18 hours ago

Biden Administration To Loan Rivian $6.6 Billion For EV Factory

Consequence for Elon Musk? Biden administration provisionally agrees $6.6 billion loan to Rivian, so it…

19 hours ago

Just Eat To Delist From London Stock Exchange

Another blow for UK's ambition to attract tech firms to its stock market, after Just…

21 hours ago

Kim Dotcom Suffers “Serious Stroke”, Amid Deportation Fight

Post on social media claims Megaupload founder Kim Dotcom has suffered a “serious stroke” amid…

22 hours ago

Australian Parliament Passes Bill To Ban Social Media For Under-16s

Elon won't be happy. Australia's House of Representatives passes bill to ban children under-16 years…

23 hours ago