User:Kbocek/sandbox

CipherCloud develops cloud encryption and tokenization gateways that enable enterprises to securely adopt cloud applications by eliminating concerns about data privacy, residency, security, and regulatory compliance barriers to adoption. CipherCloud's patent pending technology uses operations-preserving encryption and tokenization to secures data in real time at the gateway, before it's sent to the cloud. Because of this, there is no impact on usability or performance and no required application changes.

Technology
CipherCloud uses format and operations preserving encryption and tokenization, key management, and additional security services to provide a platform for securing multiple cloud applications. Encryption and tokenization are performed in real time using a mult-protocol stateless gateway. CipherCloud uses industry standard AES256 encryption.

The cloud encryption gateway sits between users and cloud applications. A single CipherCloud gateway supports multiple protocols (e.g. HTTP/HTTPS, IMAP, SMTP, etc) and can be load balanced to scale throughput and support geographic dispersed users. The CipherCloud gateway is deployed by customers as a virtual appliance or by a trusted third party encryption as a service provider.

Encryption and tokenization is configured by policy and selected by administrators on a per field basis. All encryption keys are owned and controlled by the CipherCloud customer or their trusted encryption as a service provider. This means all encrypted data in the cloud is owned and controlled by the organization.

Cloud Applications Secured
The CipherCloud Platform secures multiple cloud applications including:
 * CRM applications including Salesforce
 * Email & Collaboration services including Google Gmail, Microsoft Office 365, Microsoft Exchange Online, and Microsoft Hosted Exchange
 * Enterprise Social Networking services including Chatter
 * Storage services including Amazon S3
 * Infrastructure as a service included Amazon EC2
 * Platform as a service including Force.com

Products
CipherCloud products include:
 * CipherCloud for Salesforce: Cloud encryption and tokenization that preserves critical search, sort, and mobile functionality
 * CipherCloud for Force.com: Secure any Force.com platform enabled application with format and operations preserving encryption and tokenization
 * CipherCloud for Gmail: Encrypt all messaging data stored in Google's cloud
 * CipherCloud for Office 365: Protect all messaging, calendar, contacts, and tasks data stored in Microsoft's cloud
 * CipherCloud for Chatter: Automatic encryption to protect sensitive data in enterprise social networking
 * CipherCloud for Amazon AWS: Encrypt data in real time sent and receive from Amazon's storage cloud

Standards
CipherCloud's cryptographic key management is based on the NIST SP 800-21 and includes key rotation, split custodians, and key encrypting keys. CipherCloud uses FIPS 140-2 cryptographic libraries and supports network attached Hardware Security Modules (HSM) for hardware-based key management and accelerated encryption. CipherCloud uses standard AES256 encryption certified to FIPS 197.