Welcome!

Search Authors: Yeshim Deniz, Liz McMillan, Shelly Palmer, Lacey Thoms, Jayaram Krishnaswamy

Blog Feed Post

Interview with Gilad Parann-Nissany, Founder and CEO of Porticor

 virtual strategy magazine Interview with Gilad Parann Nissany, Founder and CEO of PorticorVSM: We at Virtual-Strategy Magazine haven’t heard from Porticor in a while. Can you tell me what you have been up to since we last heard from you?

GPN: Certainly. We have been updating the product, ramping the company and have been seeing a significant uptick in traction. On the product side, we have added encryption agents for on-server encryption, and powerful key management API capabilities, which really help cover a wide range of virtual and cloud environment customer use cases. We’re now seeing customers in all sectors that have sensitive data, such as healthcare, finance, legal, utilities and insurance. As a result, we’ve seen sales rise by orders of magnitude.

This has also helped us prime the pump for cooperation with our partners, which has created several joint solutions for Porticor with its partners.

VSM: Yes, I heard Porticor and HP entered into a partnership and integration agreement recently. Can you tell me a little more about that?

GPN: Absolutely. We recently announced the integration of Porticor’s cloud data encryption technology with HP Atalla Cloud Encryption. The new combined solution provides customers with best-of-breed cloud encryption and encryption key management technology to secure sensitive data across virtual environments and public, private or hybrid clouds. Expanding our relationship with HP extends Porticor’s data protection capabilities to span more broadly, from on premise to the cloud. Customers are offered the most secure, convenient and cost-effective solutions for ensuring data security in the cloud and virtual environments.

VSM: What are the most significant threats to organizations’ private data stored in virtual and cloud environments that HP’s new cloud service will look to secure with Porticor?

GPN: In a virtual or cloud environment, an enterprise’s data is no longer within its four walls. A variant of this issue exists in private virtual environments, where isolating a sensitive project from other projects is difficult. This exposes virtualized/cloud users to several threats which are unique to a these environments:

  1. In a virtualized infrastructure scenario – an attacker could steal the credentials to your cloud management and gain access to all of your virtual disks.
  2. Enterprises or projects share the same infrastructure and therefore the separation between users is logical and not physical. If attackers gain access to a specific portion of the customer’s virtual account they could exploit a network, virtualization or operating system vulnerability and get access to others’ data stored on a different virtualized portion.
  3. And we can’t forget the internal threat. It is highly unlikely, but possible, that a cloud provider employee will be involved in data theft. The more realistic scenario is an accidental incident related to an insider with physical access to the data center. But internal employees are targeted by the bad guys these days, knowing they can get through them to the desired data quickly.

The above threats highlight the importance of an effective encryption and key management system in a virtualized environment, which is now also offered as HP Atalla Cloud Encryption, powered by Porticor.

VSM: Are there any other major vendors with solutions already addressing these issues?

GPN: There are some solutions out there, but traditional data security solutions require costly up-front licenses, hardware implementation and operational overhead. Other cloud encryption solutions put enterprises’ encryption keys in the hands of the security vendor or cloud providers. The current solutions are an evolution of security technologies into the cloud virtualized era, and not necessarily built for the cloud, or with the cloud or virtual environments in mind.

VSM: How does this cooperation accelerate overall cloud adoption?

GPN: Well, security should not be an inhibitor to migrating enterprise workloads and data to cloud and virtual environments. As solutions such as Porticor’s Virtual Private Data system are more readily available, organizations will discover that they can trust their data in the cloud, leading to more widespread adoption. Porticor has seen good growth on its own, but imagine the global reach that HP gives us to secure data for organizations worldwide.

VSM: What is different about your solution, which led to HP selecting Porticor?  Why is this important?

GPN: Porticor’s patented Virtual Key Management service, with our patented split-key encryption technology and homomorphic key management, keeps the encryption key in the customer’s control, not in the control of the security vendor or cloud provider. Using sophisticated mathematical algorithms, customers can utilize encryption and key management in a 100 percent virtual implementation without scarifying trust. This approach fits nicely to HP’s security and cloud vision as it enables an end-to-end solution, starting with on-premise security, via hybrid cloud deployments, and all the way through pure public cloud implementations.

VSM: What are some of the benefits an organization should expect to experience as a result of this new HP and Porticor engagement? Why is this important?

GPN: Basically, you are outsourcing the complexity of the security solution, but you are keeping the control and trust for yourself. Using our technology, HP and Porticor enable virtual and cloud users to create a secured encrypted environment within minutes while completely eliminating the need to trust the security vendor or cloud provider with their encryption keys, therefore solving the biggest challenge for data encryption in the cloud – storing the keys. This best ensures the privacy of data stored in the cloud and virtual environments.

VSM: So where is this new integrated HP/Porticor product available for virtual and cloud environments?

GPN: Additional information and trial details about HP Atalla Cloud Encryption are available on HP’s website here.

VSM: What can we expect to see from Porticor in the future?

GPN: Cloud adoption is ever increasing, and while data encryption is important, the true challenge is with cloud key management. Going forward, you should expect much more innovation around this fascinating problem. We are working hard on innovating cloud-specific key management solutions that will “snap-in,” and to encrypt any data object in the cloud, across big data, distributed storage, databases and applications. These are truly exciting times for Porticor.

 

VSM: It’s been great chatting with you today. Anything else you’d like to share about the state of virtualized data protection or the Porticor solution?

GPN: Thank you, the pleasure was ours! I would like to remind your readers that cloud encryption is much more than protecting cloud data from hackers. Google, Microsoft and other software giants are fighting the US government against the requirement to share customers keys in the US or data hosted in Ireland. These cases could have dramatic implications on US cloud providers, and it is another validation for the importance of encryption key splitting, which puts the encryption keys with the end user, and not the cloud provider.

The post Interview with Gilad Parann-Nissany, Founder and CEO of Porticor appeared first on Porticor Cloud Security.

Read the original blog entry...

More Stories By Gilad Parann-Nissany

Gilad Parann-Nissany, Founder and CEO at Porticor is a pioneer of Cloud Computing. He has built SaaS Clouds for medium and small enterprises at SAP (CTO Small Business); contributing to several SAP products and reaching more than 8 million users. Recently he has created a consumer Cloud at G.ho.st - a cloud operating system that delighted hundreds of thousands of users while providing browser-based and mobile access to data, people and a variety of cloud-based applications. He is now CEO of Porticor, a leader in Virtual Privacy and Cloud Security.