Webinar: Cloud Data Masking - Tips to Test Software Securely
-
Upload
skytap-cloud -
Category
Software
-
view
103 -
download
1
description
Transcript of Webinar: Cloud Data Masking - Tips to Test Software Securely
© Copyright 2013 Axis Technology, LLC
Moving Test Data to the Cloud Safely
Avoid Putting Sensitive Data at Risk
know your data • protect your data • share your data
Confidential 2
Today’s Agenda
• Introductions
• Using Skytap for development and testing
• Discuss concerns with putting data in the cloud
• Your solution
• Demo
Confidential 3
Skytap Nuggets
3.7 Million VMs Launched
2006 Skytap Formed
5 PATENTS 9 PENDIN
G
1,200+ Customers
18K Users
SEATTLE HQ
Confidential 4
About Axis Technology
Ø Axis Technology Software, LLC is a premier software company that was created to focus on data security products. Ø Axis pioneered the data masking space via its
development of DMsuiteTM 8 years ago. Ø Independent and privately held, Axis was founded in
2000 and is headquartered in Boston, MA.
Confidential 5
Skytap provides development and test environments-as-a-service that remove the inefficiencies and constraints that companies have with their SDLC. As a result, our customers release better software faster.
“ “ More about Skytap
Confidential 6
What is an “environment”?
Confidential 7
Storefront 2.0 Application Web/
Application Server 1
(WebSphere)
Web/Application
Server 2 (WebSphere)
Load Balancer (F5 Big IP VE)
External
OpenFiler (Virtual SAN)
Oracle RAC Database
Server (Linux)
Oracle RAC Database
Server (Linux)
Domain Controller (Windows)
Reporting Server
(Windows)
DMZ
RAC Private
Internal
Internet
Corporate Headquarters
SAP via Service Virtualization
Reporting SQL Server
(Windows)
RAC Public
On-Premise Datacenter
Confidential 8
Application Environment Clones
V1.0
V1.1
V2.0
Confidential 9
Common Inefficiencies in the SDLC
Test environments
are scarce
There is too much time
spent waiting
Test environments
don’t scale with demand
Defects found in test take too
long to reproduce
Unable to collaborate productively
• Developers usually end up running tests on their laptops and other non-production configurations.
• Defects are not identified as soon as they could be.
• There is always contention around shared dev/test environments.
• An enormous amount of time is spent waiting for environments to free up.
• Takes to long for IT to provision or make available.
• More test environments are needed at certain stages of dev/test.
• Delays are caused due to queuing for test environments.
• Development and test environments don’t look the same, causing the “works for me” problem.
• It can take days for a developer to build, configure and reproduce a defect.
• Development teams now include onshore, offshore, shared services, contractors and business users.
• Today’s static environments are difficult or impossible to share.
Confidential 10
The Skytap Difference
Built for Complex environments ------------------------------------------------------------ • Server & cluster configurations • Appliances/load balancers • Advanced network
configuration and domain control
• Pre-loaded with data and virtual assets
• Connect intra-environment workflows
Built for agile dev/test Collaboration ------------------------------------------------------------ • Copy environments across
global cloud infrastructures • On-demand, elastic
resources • Ease of use with little or no
configuration time needed • Store and share as
Templates • Achieve follow-the-sun
projects
Built for IT/Ops Control ------------------------------------------------------------ • Maintain visibility and control
costs • Deliver self-service
provisioning • Set permissions, quotas &
policies by user, department, project
• Automate lab provisioning and shutdown of idle resources
• Universal access to labs with published URLs
Confidential 11
SKYTAP WEB CONSOLE
The Skytap Solution
SKYTAP CLOUD IaaS
AMAZON WEB SERVICES IaaS
OTHER CLOUD IaaS
REST API Command Line
ALM/CI Tools
E N V I R O N M E N T S -‐ A S -‐ A -‐ S E R V I C E
IT/Ops
Network SeGngs
Dev
Access Controls ConfiguraMon Manager UMlizaMon/Quotas
Test Self-‐Service Access
Save & Reproduce Defects Copy/Share Environments
Build & Deploy AutomaMon
Project Templates
Environment configuraMons
Confidential 12
Security Concerns in moving to the cloud
Confidential 13
Security Concerns
A study recently published by IDG Enterprise, highlights that, though cloud hosMng and
compuMng programs (including IaaS and SaaS) are growing in popularity, data security concerns remain a top concern among
technology decision makers.
Confidential 14
Having Sensitive Data Exposed is one of the biggest fears of companies who are contemplating moving to the cloud.
Masking Data PRIOR to moving it to the cloud, eliminates this obstacle.
What to Do
Confidential 15
How Does DMsuiteR Mask Data?
Data Masking* — Replace sensiMve data with ficMMous but realisMc data to eliminate the risk of exposure to unauthorized parMes.
The Axis DMsuite solu7on is completely automated and designed to be rapidly implemented and ins7tu7onalized. Our unique approach is to break the associa7on between unique iden7fiers and personally iden7fiable data.
* Data Masking = redaction, de-identification, depersonalization, anonymization, obfuscation
Confidential 16
Internal users Privileged users
ERP
Web server
Backups
App server
Load balancer
Databases
File server
Fire
wal
l
File server
External users
1
2
4
3
5
6
DMsuiteTM scans your client’s databases to find SensiMve Data.
Live -‐ Produc5on
Which Data?
DMsuiteTM creates an inventory of sensiMve data for your client.
Confidential 17
Internal users Privileged users
ERP Web server
Backups
App server
Load balancer Databases
File server
Fire
wal
l
File server
External users
1
2
4
3
5
6
Internal users Privileged users
ERP Web server
Backups
App server
Load balancer Databases
File server
Fire
wal
l
File server
External users
1
2
4
3
5
6
Internal users Privileged users
ERP Web server
Backups
App server
Load balancer Databases
File server
Fire
wal
l
File server
External users
1
2
4
3
5
6
Internal users Privileged users
ERP
Web server
Backups
App server
Load balancer
Databases
File server
Fire
wal
l
File server
External users
1
2
4
3
5
6
DMsuiteTM sits in the customer environment, masks data in memory and provisions masked data to the cloud.
Live -‐ Produc5on
QA Tes5ng
UAT Tes5ng
“DMZ”
Masked Data
Protect Your Data
DMsuiteTM replaces sensiMve data with ficMMous but realisMc data to eliminate the risk of exposure to unauthorized parMes.
Confidential 18
Internal users Privileged users
ERP Web server
Backups
App server
Load balancer Databases
File server
Fire
wal
l
File server
External users
1
2
4
3
5
6
Internal users Privileged users
ERP Web server
Backups
App server
Load balancer Databases
File server
Fire
wal
l
File server
External users
1
2
4
3
5
6
Internal users Privileged users
ERP Web server
Backups
App server
Load balancer Databases
File server
Fire
wal
l
File server
External users
1
2
4
3
5
6
Internal users Privileged users
ERP
Web server
Backups
App server
Load balancer
Databases
File server
Fire
wal
l
File server
External users
1
2
4
3
5
6
Live -‐ Produc5on
QA Tes5ng
UAT Tes5ng
“DMZ”
Masked Data
Proof of Concepts
DMsuiteTM is up and running in one hour, masks data in memory and provisions masked data to the cloud.
DMsuiteTM replaces sensiMve data with ficMMous but realisMc data to eliminate privacy concerns or potenMal prospects.
Confidential 19
Masked / De-Identified / Anonymized
Field Production Value Masked Value First Name Christopher Romanth Address 123 Stone Street 62 Main Street Phone 703-891-2426 703-555-1287 Date of Birth 07/11/82 07/24/82 SSN 621-02-4579 805-23-1290
DMsuiteTM masked values are realisMc but fic55ous.
DMsuiteTM does not store or make copies of producMon data.
You cannot use DMsuiteTM to view any producMon data.
Confidential 20
DMsuiteR Masks Application
s • Oracle E-
Business • Salesforc
e • PeopleSo
ft • Trizetto • SAP • MS CRM • Lawson • AMISYS
Databases
• Oracle
• MSSQL Server
• Informix • DB2 • Teradata • MS Access • MySQL • Netezza • Cache • Sybase • Ingres • Vertica • Greenplum • PostgreSQ
L
Files
• XML • CVS • Multi-
record • Word • Excel • PPT • RSS • Un-
structured • EDI
Mainframe
• DB2 • IMS • ADABAS • QSAM • VSAM
Big Data
• Cloudera • Hortonwork
s • Hadoop
NoSQL
• MongoDB • Cassandr
a
…and keeps referential integrity across all of them
Confidential 21
DMsuiteR Demo
© Copyright 2013 Axis Technology, LLC
www.skytap.com
Thank You!
70 Federal Street Boston, MA 02110 (857) 445-0110
know your data • protect your data • share your data
www.AxisTechnologyLLC.com
719 2nd Ave Suite 300 Seattle, WA 98104
888-759-8278