Webinar: Cloud Data Masking - Tips to Test Software Securely

© Copyright 2013 Axis Technology, LLC

Moving Test Data to the Cloud Safely

Avoid Putting Sensitive Data at Risk

know your data • protect your data • share your data

Confidential 2

Today’s Agenda

•  Introductions

•  Using Skytap for development and testing

•  Discuss concerns with putting data in the cloud

•  Your solution

•  Demo

Confidential 3

Skytap Nuggets

3.7 Million VMs Launched

2006 Skytap Formed

5 PATENTS 9 PENDIN

G

1,200+ Customers

18K Users

SEATTLE HQ

Confidential 4

About Axis Technology

Ø Axis Technology Software, LLC is a premier software company that was created to focus on data security products. Ø Axis pioneered the data masking space via its

development of DMsuiteTM 8 years ago. Ø  Independent and privately held, Axis was founded in

2000 and is headquartered in Boston, MA.

Confidential 5

Skytap provides development and test environments-as-a-service that remove the inefficiencies and constraints that companies have with their SDLC. As a result, our customers release better software faster.

“ “ More about Skytap

Confidential 6

What is an “environment”?

Confidential 7

Storefront 2.0 Application Web/

Application Server 1

(WebSphere)

Web/Application

Server 2 (WebSphere)

Load Balancer (F5 Big IP VE)

External

OpenFiler (Virtual SAN)

Oracle RAC Database

Server (Linux)

Oracle RAC Database

Server (Linux)

Domain Controller (Windows)

Reporting Server

(Windows)

DMZ

RAC Private

Internal

Internet

Corporate Headquarters

SAP via Service Virtualization

Reporting SQL Server

(Windows)

RAC Public

On-Premise Datacenter

Confidential 8

Application Environment Clones

V1.0

V1.1

V2.0

Confidential 9

Common Inefficiencies in the SDLC

Test environments

are scarce

There is too much time

spent waiting

Test environments

don’t scale with demand

Defects found in test take too

long to reproduce

Unable to collaborate productively

•  Developers usually end up running tests on their laptops and other non-production configurations.

•  Defects are not identified as soon as they could be.

•  There is always contention around shared dev/test environments.

•  An enormous amount of time is spent waiting for environments to free up.

•  Takes to long for IT to provision or make available.

•  More test environments are needed at certain stages of dev/test.

•  Delays are caused due to queuing for test environments.

•  Development and test environments don’t look the same, causing the “works for me” problem.

•  It can take days for a developer to build, configure and reproduce a defect.

•  Development teams now include onshore, offshore, shared services, contractors and business users.

•  Today’s static environments are difficult or impossible to share.

Confidential 10

The Skytap Difference

Built for Complex environments ------------------------------------------------------------ •  Server & cluster configurations •  Appliances/load balancers •  Advanced network

configuration and domain control

•  Pre-loaded with data and virtual assets

•  Connect intra-environment workflows

Built for agile dev/test Collaboration ------------------------------------------------------------ •  Copy environments across

global cloud infrastructures •  On-demand, elastic

resources •  Ease of use with little or no

configuration time needed •  Store and share as

Templates •  Achieve follow-the-sun

projects

Built for IT/Ops Control ------------------------------------------------------------ •  Maintain visibility and control

costs •  Deliver self-service

provisioning •  Set permissions, quotas &

policies by user, department, project

•  Automate lab provisioning and shutdown of idle resources

•  Universal access to labs with published URLs

Confidential 11

SKYTAP WEB CONSOLE

The Skytap Solution

SKYTAP CLOUD IaaS

AMAZON WEB SERVICES IaaS

OTHER CLOUD IaaS

REST API Command Line

ALM/CI Tools

E N V I R O N M E N T S -‐ A S -‐ A -‐ S E R V I C E

IT/Ops

Network SeGngs

Dev

Access Controls ConfiguraMon Manager UMlizaMon/Quotas

Test Self-‐Service Access

Save & Reproduce Defects Copy/Share Environments

Build & Deploy AutomaMon

Project Templates

Environment configuraMons

Confidential 12

Security Concerns in moving to the cloud

Confidential 13

Security Concerns

A study recently published by IDG Enterprise, highlights that, though cloud hosMng and

compuMng programs (including IaaS and SaaS) are growing in popularity, data security concerns remain a top concern among

technology decision makers.

Confidential 14

Having Sensitive Data Exposed is one of the biggest fears of companies who are contemplating moving to the cloud.

Masking Data PRIOR to moving it to the cloud, eliminates this obstacle.

What to Do

Confidential 15

How Does DMsuiteR Mask Data?

Data Masking* — Replace sensiMve data with ficMMous but realisMc data to eliminate the risk of exposure to unauthorized parMes.

The Axis DMsuite solu7on is completely automated and designed to be rapidly implemented and ins7tu7onalized. Our unique approach is to break the associa7on between unique iden7fiers and personally iden7fiable data.

* Data Masking = redaction, de-identification, depersonalization, anonymization, obfuscation

Confidential 16

Internal users Privileged users

ERP

Web server

Backups

App server

Load balancer

Databases

File server

Fire

wal

l

File server

External users

1

2

4

3

5

6

DMsuiteTM scans your client’s databases to find SensiMve Data.

Live -‐ Produc5on

Which Data?

DMsuiteTM creates an inventory of sensiMve data for your client.

Confidential 17


ERP Web server

Backups

App server

Load balancer Databases

File server

Fire

wal

l

File server

External users

1

2

4

3

5

6


ERP Web server

Backups

App server


File server

Fire

wal

l

File server

External users

1

2

4

3

5

6


ERP Web server

Backups

App server


File server

Fire

wal

l

File server

External users

1

2

4

3

5

6


ERP

Web server

Backups

App server

Load balancer

Databases

File server

Fire

wal

l

File server

External users

1

2

4

3

5

6

DMsuiteTM sits in the customer environment, masks data in memory and provisions masked data to the cloud.

Live -‐ Produc5on

QA Tes5ng

UAT Tes5ng

“DMZ”

Masked Data

Protect Your Data

DMsuiteTM replaces sensiMve data with ficMMous but realisMc data to eliminate the risk of exposure to unauthorized parMes.

Confidential 18


ERP Web server

Backups

App server


File server

Fire

wal

l

File server

External users

1

2

4

3

5

6


ERP Web server

Backups

App server


File server

Fire

wal

l

File server

External users

1

2

4

3

5

6


ERP Web server

Backups

App server


File server

Fire

wal

l

File server

External users

1

2

4

3

5

6


ERP

Web server

Backups

App server

Load balancer

Databases

File server

Fire

wal

l

File server

External users

1

2

4

3

5

6

Live -‐ Produc5on

QA Tes5ng

UAT Tes5ng

“DMZ”

Masked Data

Proof of Concepts

DMsuiteTM is up and running in one hour, masks data in memory and provisions masked data to the cloud.

DMsuiteTM replaces sensiMve data with ficMMous but realisMc data to eliminate privacy concerns or potenMal prospects.

Confidential 19

Masked / De-Identified / Anonymized

Field Production Value Masked Value First Name Christopher Romanth Address 123 Stone Street 62 Main Street Phone 703-891-2426 703-555-1287 Date of Birth 07/11/82 07/24/82 SSN 621-02-4579 805-23-1290

DMsuiteTM masked values are realisMc but fic55ous.

DMsuiteTM does not store or make copies of producMon data.

You cannot use DMsuiteTM to view any producMon data.

Confidential 20

DMsuiteR Masks Application

s •  Oracle E-

Business •  Salesforc

e •  PeopleSo

ft •  Trizetto •  SAP •  MS CRM •  Lawson •  AMISYS

Databases

• Oracle

• MSSQL Server

•  Informix • DB2 • Teradata • MS Access • MySQL • Netezza • Cache • Sybase •  Ingres • Vertica • Greenplum • PostgreSQ

L

Files

•  XML •  CVS •  Multi-

record •  Word •  Excel •  PPT •  RSS •  Un-

structured •  EDI

Mainframe

•  DB2 •  IMS •  ADABAS •  QSAM •  VSAM

Big Data

•  Cloudera •  Hortonwork

s •  Hadoop

NoSQL

•  MongoDB •  Cassandr

a

…and keeps referential integrity across all of them

Confidential 21

DMsuiteR Demo

© Copyright 2013 Axis Technology, LLC

www.skytap.com

Thank You!

70 Federal Street Boston, MA 02110 (857) 445-0110

know your data • protect your data • share your data

www.AxisTechnologyLLC.com

719 2nd Ave Suite 300 Seattle, WA 98104

888-759-8278