See our complete list of top database security vendors
Bottom Line
Those seeking protection and encryption beyond the database will find the Thales Vormetric Data Security Platform attractive, as it offers a single data security platform, centrally managed for delivering overall data security. However, for those wishing to only secure databases, it may be overkill. Vormetric Data Security’s transparent encryption, tokenization and masking capabilities, high-performance encryption and centralized management get high marks, but KuppingerCole notes that the product lacks comprehensive database security features and has only basic static masking functionality.
Product Description
Vormetric Data Security Platform manages data-at-rest security across the organization. It features multiple data security products that can be deployed individually or in combination to deliver encryption of databases, privileged user access controls, and field-level data protection with encryption, tokenization, data masking, and centralized key management.
Database Security Features Rated
Databases served: Very good
IBM DB2, Microsoft SQL Server, MongoDB, MySQL, NoSQL, Oracle, Sybase and nearly any type of database on Windows, Linux and Unix platforms.
Problem solved: Good
The Vormetric Data Security Platform can manage data-at-rest security across the entire organization. The platform offers capabilities for protecting and controlling access to databases, files and containers. It can secure assets residing in cloud, virtual, big data and physical environments.
Value: Very good
KuppingerCole gives high marks for the product’s single security manager for maximizing value and minimizing the total cost of ownership.
Implementation: Fair
Setting up transparent database encryption can be a complex process. Vormetric requires installation and configuration of a management console and agents.
Management: Good
Once set up, the Vormetric Data Security Platform makes administration simple and efficient. It offers a Web-based interface, a command-line interface (CLI) and application programming interfaces (APIs), including support for REST, SOAP, Java, .Net, and C. You can apply data-at-rest security quickly and consistently, and Vormetric provides centralized management of encryption keys and policies across all environments and products. It also delivers application encryption APIs for embedding transparent encryption into existing apps, Live Data Transformation to reduce maintenance windows needed for deploying encryption, rotating keys, and creating versioned backups.
“Vormetric is easy to install and manage, and it just works,” said a Database Development Team Leader at a services company.
Support: Good
Users are generally positive.
Cloud: Very good
Thales Vormetric Data Security is available as a cloud service offering, or for single-tenant private cloud or on-premises deployment. It can be set up in public, private or hybrid clouds, as well as via IaaS, PaaS and SaaS: Amazon Web Services, Google Cloud Platform, Microsoft Azure, Salesforce, Amazon S3 (and compatible API services).
Markets and Use Cases
Thales Vormetric is ideal for those wishing to protect databases and data in general throughout the enterprise via one product suite. The company has specific products tailored to the Salesforce Shield Platform Encryption, Mircosoft Azure Key Vault and AWS Key Management Services, as well as a version aimed at Teradata.
Intelligence
Vormetric Security Intelligence produces granular logs that provide a detailed, auditable record of file access activities, including root user access. It offers integration with security information and event management (SIEM) systems, and it delivers pre-packaged dashboards and reports that streamline compliance reporting and speed threat detection.
Delivery
Thales Vormetric Data Security is delivered as a FIPS 140-2 compliant virtual appliance or hardware appliance.
Agents
Yes. It can scale to 10,000+ agents.
Pricing
Not available.