Voltage Security Library

End-to-End Encryption

Voltage SecureData and the new PCI DSS 1.2 Guidelines
Download the PCI DSS 1.2 Guidebook and learn how Voltage SecureData helps you become PCI compliant faster and at lower cost than other solutions

Information Protection Solutions (CxO Information Series)
High level overview of all Voltage Security solutions

Format-Preserving Encryption Whitepaper
Learn about the mathematical underpinnings behind Format-Preserving Encryption

How to Encrypt a Credit Card Number
Walk through the steps taken to encrypt a credit card number using Format-Preserving Encryption

Data Protection Whitepaper
Learn how you can implement end-to-end data protection across your organisation

Data Masking Whitepaper
Learn how you can implement data masking and de-identification using Format-Preserving Encryption

Voltage Datasheets

Voltage SecureData
Solutions for protecting data in databases and applications

Voltage SecureMail
Secure business communication via email or mobile messaging with end-to-end content level encryption

Voltage Security Network (VSN)
Email encryption delivered as a hosted service from Voltage Security

Voltage SecureFile
Protect files and documents, regardless of where they go or how they get there.

Voltage SecureFile for IBM Lotus Quickr
Automatically encrypt files and documents uploaded to Quickr based on the Quickr Place file type or user.

Voltage SecureMail Archive Connector
Provides seamless integration between secure encrypted email and Symantec Enterprise Vault ensuring that eDiscovery and message retention is preserved even with full end-to-end encryption.

Voltage SecureMail Statement Generator Service
Delivers secure electronic statements directly to the recipients’ inbox ensuring a usable, secure, and low cost statement delivery service.

Voltage Partner Solutions

Voltage SecureMail and Proofpoint
An overview of Proofpoint and Voltage Security solutions for the policy-based encryption of sensitive email.

Voltage SecureMail and Microsoft Exchange Hosted Encryption
An overview of Microsoft Exchange Hosted Encryption service for the policy-based encryption of sensitive email.

Voltage IBE and RSA/Tablus Content Sentinel
Data at rest solutions to locate, classify and encrypt sensitive data anywhere in the enterprise.

Voltage SecureMail and Secure Computing
An overview of Secure Computing and Voltage Security solutions for protecting email and the privacy of email.

Voltage SecureMail and Symantec Brightmail
An overview of how Voltage Security and Symantec Brightmail address the needs for email privacy and protection.

Voltage IBE and Vericept Content 360° Content Protection
Data in motion solutions for protecting the sensitive content leaving the enterprise.

Industry Reports

John Roling: Lotus Security in the New World of Collaboration
IBM Lotus products have always provided security rich environments – however as collaboration between business partners and customers increases, security must extend to these external parties. This booklet written by well known industry blogger, John Roling, describes the challenges of extending security across the entire business network.

Ferris Research: The Total Cost of Ownership for Voltage Identity-Based Encryption Solutions
By Richi Jennings
Security experts have invented an alternative form of public key cryptography. Called identity-based encryption (IBE), it enables a public key to be dynamically generated by cryptographically combining a correspondent's identity (for example, his or her email address) with a single, shared, master secret.

Unlike a conventional public key infrastructure (PKI), IBE does not require complex pre-enrollment or revocation checking. There is essentially no need for certificates. An IBE also does not require a complex PKI to generate, certify, decertify, and store individual public keys. Thus, IBE systems are considerably easier--and less costly--to implement.

In this report, we look at the total cost of ownership of Voltage Security's IBE offering and compare it with that of a traditional PKI system. An accompanying spreadsheet allows organizations to calculate their projected savings.

FORRESTER: Voltage Security Tries To Put The Spark Back Into Secure Email
Jonathan Penn with Adele Sage
With its Identity-Based Encryption approach to cryptography, Voltage Security offers several distinct benefits over other secure email solutions. It's easy for people to use, it's easy for IT shops to manage, and it's easy to integrate into other systems and processes. Voltage is off to early success, and its unique solution is worthy of attention and consideration.

Industry White Papers

I've Got DLP. Now What?
In response to the alarming uptick in security breaches, inadvertent data leaks and tightening regulations around identity theft prevention, many organizations are sharply increasing their investment in security technologies. A popular first step is implementation of Data Leak Prevention (DLP) solutions. What many early adopters are finding, however, is that while DLP solutions can do a great job of identifying security weaknesses and even preventing data leaks, few if any are capable of providing a comprehensive information security solution on their own. This whitepaper will examine ways to maximize your DLP investment by integrating other security technologies, such as encryption, to address security weaknesses in a timely and cost effective manner.

Addressing PCI Encryption and Key Management End user Challenges
This paper focuses on meeting end-user based key management and encryption requirements for PCI compliance. Specifically, we detail how a comprehensive, easy-to-administer key management structure, backed by automated policy-based encryption for emails and mobile devices, can empower end-users to execute their responsibilities, while at the same time deliver the ability to meetPCI security requirements and provide a stronger level of security.

Secure Messaging for Financial Services: Conforming to GLBA Safeguards
This whitepaper describes the some of the security incidents in the financial services community that have contributed to the momentum behind privacy safeguards laid out by the Gramm-Leach-Bliley Act. The paper goes on to describe how Voltage Security provides solutions to reduce the risks associated with sensitive communication between financial services institutions, business partners and consumers.

Protecting Business Communication with Voltage Security Solutions
The data used to identify, contact, or locate consumers (e.g. name, address, telephone number, social security numbers, and email address) is often insecurely being disclosed during daily communications. In recent months the challenges of protecting Personally Identifiable Information (PII) has been highlighted in high-profile data security breaches. Due to data protection regulations in places such as California and New York, these privacy breaches have been publicly disclosed resulting in publicity, disgruntled share holders, damage to brand reputation and anxious consumers who fear exposure to identity theft.

This whitepaper describes the range of Voltage Security Solutions that can be used to secure the privacy of confidential information flowing in and out of your organization.

Beyond Compliance: Protecting Business Communication across the Organization
This whitepaper will provide a high-level overview of the regulations that have grabbed the media's attention and have forced specific industries to react. It will also provide a more insightful look into the information that is being transmitted within/from an organization that could be putting a company in legal/moral jeopardy even though specific compliance regulations may not yet be directly applicable. Finally it will provide insight into a Privacy Platform that can play a critical role in overall corporate compliance and best practices program.

Secure Messaging for the Healthcare Industry: Coming to Grips with HIPAA
This whitepaper uncovers the history of mismanaged medical records and why HIPAA came into being; what other upcoming government regulations will promote the use of secure electronic medical records; and an overview of an effective technical solution - based on the technical standards and specifications of the HIPAA Security Rule - from Voltage.

A Guide to the Sarbanes Oxley Act and Email Security
This guide will uncover how SOX addresses the threat of fraud in the finance departments of public companies by placing great emphasis on companies establishing reliable "internal controls" for gathering, processing, and reporting financial information.

Technology White Papers

The Voltage Identity-Based Encryption Advantage
The advent of key management systems promises a future in which encryption can be deployed uniformly across all applications and a single management console controls encryption across the enterprise. This white paper will define the requirements for a robust key management system, explain why traditional key management architectures do not fully meet these requirements, and introduce Voltage Identity-Based Encryption (IBE), an architecture that uniquely meets all the requirements for an effective enterprise key management system.

Email Security – The Identity-Based Encryption Advantage
Overcoming the hurdles of PKI, symmetric and web-based messaging This whitepaper provides an overview of traditional approaches to secure messaging, and introduces a new way to secure communication incorporated in the Voltage Security platform.

• Describes the existing encryption solutions available on the market today and details their inherent shortcomings;
• Defines the critical requirements for a solution that enables ubiquitous secure business communication;
• Describes a groundbreaking new technology, called Identity-Based Encryption (IBE), that addresses these critical requirements and enables transparent secure messaging; and
• Illustrates how IBE technology can be easily integrated into the most popular and fastest-growing applications

On Demand Webcasts

End-to-End Data Protection for Test, Development and Outsourced Systems
Presented by Steve Ross, Senior Product Manager, Voltage Security

When it comes to data protection, most of us immediately think of customer-facing applications and production databases. Consequently, that's where most organizations focus their attention. But what about the data used in non-production environments for application development, testing, quality assurance and training? Listen to this webinar to learn more about solutions for protecting non-production data.

Tokenization and End-to-End Encryption - Fact and Fiction
Presented by George Peabody, Director, Emerging Technologies Advisory Service, Mercator Advisory Group and
Mark Bower, VP Product Management, Voltage Security

As a result of both the recent PCI DSS Community meeting and the PricewaterhouseCoopers survey on approaches for achieving PCI compliance, attention is now focused on two technology solutions that help merchants reduce PCI audit scope, secure consumer credit card data and reduce the costs associated with PCI compliance. Join George Peabody, research director at Mercator Advisory Group and industry expert on payment security, along with Mark Bower, security expert and vice president of product management at Voltage Security, as they examine these new approaches to securing customer data.

Transparently Encrypting Data in z/OS and Open Systems
Presented by Gregory P. Boyd, System z Crypto and eBusiness Security, Advanced Technical Support, IBM;
Ted Alexander, Cofounder, The Praxium Group; John Weald, VP Engineering, Voltage Security and
Mark Bower, VP Product Management, Voltage Security

In a world of ever increasing, large scale data breaches the mainframe z/OS environment is not immune. But securing credit card, social security and other types of sensitive numbers or data has been huge challenge, especially in large mixed environments that include both mainframe z/OS and open systems. It can be costly, time consuming and disruptive to business operations. In this webcast you'll hear from well-known subject matter experts about the threats and challenges occurring in the mainframe z/OS data security world today and likely future scenarios you should be aware of. You'll learn how to achieve data privacy compliance quickly and easily through AES Format Preserving Encryption natively in z/OS and open systems - even going well beyond basic compliance requirements.

Understanding Tokenization and End-to-End Encryption
Presented by Terence Spies, CTO, Voltage Security and special guest expert,
Branden R. Williams, Director, PCI Practice - Global Security Consulting, VeriSign

You may have heard about the rising number of data breaches occurring in the industry. The disturbing fact is that 99% of current security solutions would not have prevented breaches at leading brand name companies. Why? Because current approaches to protecting sensitive data within your organization are difficult and expensive to implement and do not protect data end-to-end. Learn more about the two techniques have emerged that may help protect sensitive information such as credit card numbers, Primary Account Numbers (PANs) and government tax identification numbers.

Ensuring Your Next Board Meeting is Not About Data Breaches
Presented by Mark Bower, VP Product Management, Voltage Security and
Bryta Schultz, VP Product Marketing, Thales Information Systems Security

As recent data breaches have proven, meeting compliance objectives - or even passing audits - do not necessarily protect the enterprise from breach. A recent survey conducted by Verizon Business reveals that a staggering 81 percent of affected organizations subject to the Payment Card Industry Data Security Standard (PCI-DSS) had been found non-compliant prior to being breached. Further, the report goes on to disclose that despite widespread concern over desktops, mobile devices, portable media and the like, 99 percent of all breached records were attributable to compromised servers and applications. A new approach is needed; otherwise your next board meeting will be about data breaches.

Integrating Encryption with Archiving and eDiscovery
Presented by Sudeep Venkatesh, Information Security Systems, Voltage Security and
Sean Regan, Sr. Product Marketing Manager - Enterprise Vault, Symantec

Archiving, eDiscovery and encryption all create competing requirements on organizations. Many companies must encrypt sensitive email information, yet at the same time archive those emails and be ready for eDiscovery processes in the future. Traditional encryption approaches make it very difficult to accomplish all 3 goals. New approaches from Symantec and Voltage Security result in tightly integrated archiving and the ability to encrypt emails and still be able to use your eDiscovery tools when needed. This webcast will explain the challenges of end-to-end encryption with archiving/eDiscovery and how companies have met this challenge to deploy email encryption that is fully integrated with eDiscovery, archiving or forensics processes.

Data Protection Risks and How to Avoid Them
Presented by Trent Henry, Principal Analyst, Security and Risk Management Strategies, Burton Group and
Dr. Howard Robkoff, Chief Security Architect, with leading technology integrator MphasiS (an EDS Company)

Listen as Voltage Security, Burton Group and MphasiS (an EDS company) discuss the top five risks of protecting customer data and what to do about them. Are you concerned by the Heartland Payment Systems data breach? Learn about the challenges organizations are facing today in protecting data and how they are attempting to secure sensitive data across their extended business networks. Hear about how organizations in the insurance, financial services and retail sector have turned to an innovative form of end-to-end encryption that enables them to rapidly and at low cost protect credit card numbers as well as social security numbers within their databases and applications.

Achieving Painless PII Data Protection Across the Enterprise
Presented by Mark Bower, Director of Information Protection Solutions, Voltage Security

Even in these challenging economic times protecting personally identifiable information (PII) is a must - whether to reduce risks associated with outsourcing, compliance with payment card industry standards (PCI) or to protect sensitive customer and employee data. Mark Bower of Voltage Security tells you how your company can achieve 'set and forget' protection across your enterprise especially in the face of shrinking IT budgets. In this webinar you'll hear case study details on accomplishing comprehensive protection of PII in just weeks, regardless of existing platforms, with full end-to-end protection of all your enterprise data at the absolute lowest cost.

Top Strategies for Finding and Securing Confidential Enterprise Data
Presented by David Meizlik, Sr. Product Marketing Manager Data Security Solutions, Websense and
Don Chouinard, Sr. Dir. Prod. Management, Voltage Security

FS-ISAC, Voltage Security and Websense discuss the top proven strategies for discovering and protecting your confidential data. You'll learn to recognize key decision points in handling enterprise data, both internally and externally, and how to manage important tradeoffs for a variety of enterprise data security scenarios. The path to protection is not as long and arduous as you might think. The key to success is diligent analysis so you get the job done right the first time and for the long haul. Listen now and learn how.

Securing enterprise and customer data - the good news it's not as costly and time consuming
as you think
Presented by Thomas Raschke, Senior Analyst, Security & Risk, Forrester Research and Mark Bower,
Director of Information Protection Solutions, Voltage Security

Voltage Security and Forrester Research discuss the fact that enterprises have to take a very serious look at the risks of not protecting confidential data and evaluate both the costs of doing so or of doing nothing at all. They'll review the new technologies and strategies for protecting your confidential information. Topics covered include market dynamics, PCI and other regulatory drivers, the risks of non-compliance, how companies are protecting databases and applications, and customer case studies on how to achieve faster and lower cost information protection.

Effectively Securing Data Privacy
Presented by Rebecca Herold, author of "The Privacy Papers"

This editorial TechWebCast, featuring Rebecca Herold author of The Privacy Papers, will highlight the most pressing privacy challenges now facing businesses. Explore some of the commonalities running through the privacy incidents that have occurred over the past year, and ways in which you can reduce the risks around protecting sensitive data in your own organization. Learn more about the need to address privacy issues within business processes, not only to meet regulatory requirements but also to demonstrate due diligence, support business goals and build business value.

Healthcare Webcast: Overcoming Electronic Communication Challenges
Presented by Matthew Bowley, Mail and Messaging Architect, Pacific Solutions Group

This webcast uncovers how California Department of Health Services (CA DHS) is overcoming the electronic communication challenges that the unique regulatory and operating environment of healthcare imposes.
Matthew Bowley will discuss:

• What drove CA DHS, and is driving other healthcare organizations, to implement a secure messaging infrastructure
• What operations does a secure messaging infrastructure impact
• What does this mean to other government agencies and vendors that work with CA DHS
• Why CA DHS settled on the Voltage/Proofpoint solution

Securing Microsoft Exchange Messages
Presented by Miles Stevenson, Network Administrator, SANS Institute and Wasim Ahmad, V.P. Marketing,
Voltage Security

With more and more emails being sent that potentially contain personally identifiable information (PII) many organizations are faced with the problem of how to secure those communications. This webcast will introduce listeners to Exchange messaging protocols and discuss strategies to secure those communications, highlighting Voltage's Identity-Based Encryption. Featuring Miles Stevenson--Sponsored by Voltage Security.