Share this article on:
Thales is aiming to enable DevSecOps teams to deploy data protection controls into multi-cloud applications in minutes instead of weeks with its CipherTrust Platform Community Edition.
CipherTrust Platform Community Edition is a version of Thales' CipherTrust Platform, designed to target developers and DevSecOps teams for evaluation and integration of the solution into their workflows and build pipelines. Thales aims to provide an easier path for organisations to scale from development to production by "reducing the friction when implement[ing] data protection technology".
According to Todd Moore, vice president of encryption products at Thales, organisations are becoming increasingly aware of the need to implement zero trust solutions within their security strategies.
"DevSecOps teams demand that security practices be automated and integrated into each application development cycle stage to mitigate digital transformation risks.
"Thales is now offering a free-forever version of its CipherTrust Data Security Platform to give end users the tools to deploy data protection controls into multi-cloud applications in minutes – removing the complexity from implementing data security and accelerating time to compliance," Moore said.
CipherTrust Platform Community Edition enables developers and DevSecOps teams to implement an enterprise-grade solution that can be easily upgraded to the CipherTrust Enterprise platform, when the time comes to scale, or go into production.
The Community Edition includes most of the features of the CipherTrust Enterprise platform, it is designed to be well suited for small or development-type infrastructures. It consists of a "free-forever version" of CipherTrust Manager and two CipherTrust connectors, CipherTrust Transparent Encryption for Kubernetes and CipherTrust Data Protection Gateway.
DevSecOps teams manage a crucial element of an organisation's security strategy via protecting keys and certificates associated with applications and containers.
With the Community Edition, developers can centralise key management and encryption policies across multi-cloud applications. When the solution requires a secure root of trust, upgrading to the CipherTrust Enterprise Platform enables access to a FIPS 140-2 Level 3 certified Thales' Luna Hardware Security Modules.
Ever-evolving security threats and compliance regulations has made it challenging for organisations to successfully implement then roll out security enhancements at the speed demanded by DevOps.
The Community Edition solution is designed to enable DevSecOps teams to protect data rapidly in legacy and cloud-native applications. Sensitive data can be protected in RESTful calls and containerised applications in Kubernetes environments without modifying a single line of application source code.
Organisations must acknowledge that collaboration among teams not accustomed to working together is critical to successful cross-domain objectives, according to Jay Lyman, senior research analyst at 451 Research, part of S&P Global Market Intelligence, who noted that faster releases and greater efficiency are key elements to success.
"Many enterprises are still figuring out how to implement DevSecOps, which represents a departure from traditional thinking whereby security teams own security for the organisation from end to end," Lyman said.
[Related: Hackers take aim at Ukrainian officials’ phones]