Tag: AWS KMS

Financial institutions possess and process data that are very sensitive and have immense business value. In recent years, regulations like open banking and data residency law have forced organizations to be even more adaptive to frequent challenges to systems storing and processing the data. Explore how Capgemini developed an application to address this customer challenge and learn how the approach helped worldwide credit card provider comply with PCI DSS security standards.

Enterprises often choose to mask, remove, or encrypt sensitive data in the ETL step to minimize the risk of sensitive data becoming stored, logged, accessible, or breached from their data lake or data warehouse. Xplenty’s ETL and ELT platform allows customers to quickly and easily prepare their data for analytics using a simple-to-use data integration cloud service. Xplenty’s global service uses AWS KMS to create and control the keys used to encrypt or digitally sign your data.

Security isn’t always top of mind for developers because it can slow down software releases. HashiCorp Vault helps eliminate much of the security burden developers experience while trying to comply with security team requirements. Vault was built to address the difficult task of passing sensitive data to users and applications without it being compromised. Within Vault, all transactions are token-based, which limits potential malicious activity, and provides greater visibility into whom and what is accessing that information.

No-code manufacturing app platforms such as Tulip are a critical tool for manufacturers undergoing a digital transformation. These platforms allow frontline engineers to easily build, on their own, shop-floor applications to increase the productivity, quality, and efficiency of their operations. By leveraging AWS to deliver their manufacturing app platform, Tulip lets manufacturers of all sizes access the benefits of the cloud.

Slack has become a vital tool for collaboration for teams and companies around the world, and we are excited about the launch of Slack Enterprise Key Management (EKM). By integrating with AWS Key Management Service (KMS) in a customer’s AWS account, Slack EKM gives you tighter control over access to data that is stored in Slack. With Slack EKM, you can create a Customer Master Key that always stays under your control. Then, using key policies, you grant Slack access to use your CMK to generate and decrypt data keys.

The reality is just 10 percent of an enterprise blockchain solution is the blockchain network itself. There are many other application, data, and infrastructure components required to build a complete production-ready business solution. The Kaleido Marketplace is a catalog of supplementary ledger services, third-party applications, and AWS integration services. This makes Kaleido a full-stack cloud-based platform for enterprise blockchains that can accelerate the entire journey from POC to production.

The AWS Service Broker is an open source project that allows native AWS services to be exposed directly through application platforms, such as Red Hat OpenShift Container Platform. Developers are able to provision and expose AWS through the Service Catalog, CLI, or API without needing to interact with the AWS console, or without having extensive knowledge of AWS. In response to customer feedback, we have added new features to AWS Service Broker for OpenShift and Kubernetes.

Data security is a concern for all enterprises and HashiCorp’s Vault Enterprise helps you achieve strong data security and scalability. Vault is a trusted secrets management tool designed to enable collaboration and governance across organizations. It enables developers, operators, and security professionals to deploy applications in zero-trust environments across public and private datacenters. Through a unified API and AWS integration, Vault can be integrated into your development at any stage.

Follow an AWS expert’s research on various encryption options such as Oracle Transparent Data Encryption (TDE) and Oracle Native Network Encryption (NNE), as well as SSL options on HAQM RDS. This post explains how HAQM RDS supports Oracle TDE, Oracle NNE, and SSL. If you’re an architect or a developer, this will help you plan and configure storage and network encryption on HAQM RDS. You should be aware of the need to encrypt data at rest and how Oracle TDE, Oracle NNE, and SSL can help you achieve your encryption goals.