Corporate Data Security Solution Details

Tricryption® Corporate Solution Areas

File Protection: On Servers, Desktops, Laptops or Tablets
Tricryption® may be deployed to protect any type of file (PDF, Excel, Word, images, photos, , etc…) stored, used and shared throughout a business enterprise. Each file is encrypted with its own unique key. These keys are stored centrally in a key database maintained within the organization. With Tricryption®, all sensitive files may be protected in case of equipment theft, loss or network breach. In addition, this technology allows for secure sharing of files among authorized users, auditing, and real time access revocation. This solution may be applied on workstations, laptops (autonomous laptop operations supported), thin clients, servers, and mainframes (with Java interface). To the user, the file encryption, key controls and access management are transparent alleviating work disruption and the need for user training.

Database Encryption:
Integration of Tricryption® into business applications allows a users to selectively apply the encryption policy necessary to safeguard sensitive information (Example: encrypt financial, lead/client, employee, product design, partner/channel database records). The capability provides for a very granular level of encryption, down to the field level if desired allowing the use of one key per field, or one key per record, thus increasing the security of the database and preventing even trusted employees such as database programmers or administrators from viewing sensitive patient information.

De-identification of Records within a Database:
Relational databases in the business community contain multiple tables that are joined and linked to each other, allowing a record in one table to be linked to one or more records in transaction tables allowing navigation between identifying data and the processes performed and the results obtained. With Tricryption® based de-identification, the relationship between the identifying table and the transaction table is encrypted, rendering the link between identifying and sensitive content related information accessible to only authorized individuals. For all intents and purposes, this technology renders all business related data in the database anonymous.

Identity Protection:
In many instances such as warranty information, use of Personally Identifiable Information (PII) is essential to providing customer service support. An identity protection database can be constructed by encrypting all PII and storing it in a centralized location, and creating a cryptographically-generated alias or pseudonym to represent the study participant. By storing the pseudonym with the data, the PII remains anonymous at all times. If a person gains direct access to the client database, they will not be able to view any identity information, or if they gain access to the identity database then they will view only encrypted data and cannot relate it to any identifying information, thus protecting client privacy.

Anonymization of Business Data:
Tricryption® can be deployed in a manner allowing different organizations involved in the business cycle to pool data anonymously. Personal Identifiers are replaced by cryptographically-generated aliases enabling the data to be pooled and aggregated anonymously. Since this technology creates a unique alias per record, this allows tracking of individuals across business cycle stages (lead, sale, support, customer feedback, etc...) while maintaining anonymity. In cases of need to contact a client (Example: product issue or recall, warranty extension, etc...), anonymization with Tricryption® allows for the re-identification of the database record, but only after the appropriate authorization is obtained (subject to stringent security and privacy controls).