Building on the two companies’ long-standing partnership, Thales and Google Cloud are now working in partnership to strengthen data security for customers moving their workloads to the cloud . The Thales and Google Cloud solution enables General Data Encryption, a unified offering that provides complete control over data at rest, in use, and in transit with comprehensive customer-owned and managed centralized key control. It leverages the combined power of Google Cloud Confidential Computing, an innovative technology that encrypts data in use as it is being processed, and Thales’ CipherTrust Cloud Key Manager, to create and manage your cryptographic keys on Google Cloud.
Increasing trust in the cloud
According to the Thales Data Threat Report 2021 , more than half (51%) of all organizations surveyed are moving their workloads and data to the public cloud, making data security and control even more important. Thales and Google Cloud’s integrated solution ensures that data at rest, in transit and now in use cannot be accessed by the cloud service provider, providing confidentiality of customer data.
As a result of Google Cloud’s general encryption of data, organizations now have a way to use highly sensitive data on GCP. This is achieved only by granting access to data usage via a confidential virtual machine (VM) with cryptographic keys hosted outside of GCP and key management handled via an external cloud key manager such as CipherTrust.
” To facilitate the future of secure data transfer, we must be able to put control entirely in the hands of the customer. Google Cloud data encryption allows the end user to reduce the amount of implicit trust involved in storing and transferring data. By bringing in a trusted third-party platform such as Thales’ CipherTrust Data Security Platform, we are able to provide our customers with the data security solution they need to seamlessly encrypt and decrypt their confidential and proprietary information,” said Nelly Porter, Manager of groups projects and cloud security at Google.
Also Read: Instead of the old one for Safer Internet Day
Ensuring strong key management
The integrated solution leverages Thales’ Cloud Key Manager to allow users to create cryptographic keys and establish rules to encapsulate and de-encapsulate each key, while providing support for many specific use cases of sensitive computing.
” Since 2017, we have been working together with Google Cloud to enable companies to trust the cloud with more sovereign control over the security of their data. We recently announced in France the co-development of a trusted cloud that will also feature our CipherTrust solutions Our support for Google Cloud’s general data encryption is another indication of our shared vision to provide organizations around the world with solutions that allow them to securely control and manage their data, no matter where it resides,” said Todd Moore, Vice -president of cryptographic products at Thales.
Increasing customer control
Thales’ CipherTrust Data Security Platform enables the end user to maintain strong ownership of their data on-premises and in the cloud, as well as when moving workflows and sensitive data to the cloud. The new integrated solution for GCP represents a new use case for Hold Your Own Key (HYOK), stemming from Thales’ extensive experience in creating HYOK solutions for customers migrating their workloads to the public cloud.
Google Cloud customers using sensitive VMs with AMD EPYC™ processors can encrypt data in use by employing the advanced security feature, Secure Encrypted Virtualization (SEV), which is available on AMD EPYC™ CPUs. With Confidential Computing, customers can be confident that their data will remain private and encrypted even as it is processed.
” Confidential Computing addresses the top security concerns many organizations have today when migrating their confidential applications to the public cloud. Google’s Confidential VMs, powered by AMD EPYC processors and using its SEV capability, enable transparent application protection, helping customers to protect their most valuable information while it is in use by applications in the public cloud,” added Raghu Nambiar, corporate vice president of ecosystems and data center solutions at AMD.
For more such updates follow us on Google News ITsecuritywire News