Tokenization Solutions
Tokenization is a phrase that is used to describe the process of taking some form of sensitive data, (frequently card data) and then replacing it with a token. It is a relatively new concept that has attracted a significant amount of attention from the global security industry. In January 2010, the PCI Security Council announced that tokenization would be assessed as part of a PCI Special Interest Group (SIG), and that if implemented correctly, could be a method for reducing the scope of PCI assessment.
|
|
||
|
||
|
|
||
|
Tokenization is best suited to environments where there are multiple machines that need to store sensitive data. In these instances, a tokenization solution would involve holding the sensitive data in one secure central vault, with all other devices storing and accessing a corresponding token instead of the sensitive data itself. If these devices access a token as opposed to the sensitive data, then they are perceived to pose less risk to the organisation's data. Nettitude works extensively with nuBridges and are a nuBridges Gold partner. nuBridges have been leading the tokenization industry and have some cutting edge solutions that deliver format preserving tokenization directly relevant to the PCI DSS as to PII information. Format Preserving Tokenization & PCI DSSnuBridges tokenization software intercepts the data you want to protect, generates format-preserving tokens and inserts them in place of the sensitive data. It then encrypts the original data and stores the cipher text in a central data vault. Tokens can be safely used by any application or database without risk of exposing sensitive data. When applications or databases require the clear-text value, they simply make a Web services call to the Token Manager and present the token. The Token Manager validates the request credentials and, if authorised, looks up the token in the data vault, identifies the appropriate cipher text, decrypts the value and presents it back to the database or application. |
Unlike any other solution on the market, nuBridges Protect Token Manager generates "format-preserving" tokens that mimic the original data. This eliminates the need to modify applications and databases because the data looks just like they expect it to look, and it's a perfect way to support development and testing without exposing real production data. Organisations can also manipulate the format of the token. For example, tokens can be formatted to: Nettitude has assisted organisations to deliver tokenization solutions across Europe & Asia and can provide proactive design, implementation and support services in this space.To find out more about how Nettitude can help you with your Unified Communications requirements, please complete our contact form, and a Consultant will respond to your enquiry. |
|
- Firewall Solutions
- Endpoint Security
- Content Checking
- Anti Virus
- Authentication Controls
- Intrusion Detection / Prevention
- Security Audits
- NAC Solutions
- Encryption Solutions
- Tokenization Solutions
- Key Management Services
- Security Information & Event Management
- Physical Security
- Tripwire Enterprise
- Tripwire Log Centre
