As the frequency and sophistication of cyberattacks and data breaches continue to increase and quantum computing advancements now threaten to break many traditional cryptography and data protection mechanisms, organizations need to adopt agile strategies to safeguard their most sensitive data. In the first segment of our three-part series, we discussed the need to view crypto-agility […]
Advancements in computing technology and a rapidly evolving threat landscape are compelling government and enterprise organizations to rethink their approach to how they optimize their applications to safeguard sensitive data. While much of the recent conversation on the concept of crypto-agility has focused on the ability to smoothly transition to post-quantum (PQ) resistant algorithms, crypto-agility […]
At a time when data breaches and cyber threats continue to increase in frequency and sophistication, protecting critical data has become more important than ever. While traditional approaches that safeguard data at rest and in transit deliver protection, their use alone does not provide comprehensive security. The migration to the cloud and the proliferation of […]
Every day, businesses share sensitive information outside the enterprise, such as sending purchasing files or other documents containing personally identifiable information to trading partners, resellers, or third parties. Safeguarding this data is crucial to avoid a breach and comply with regulations, which is why organizations often implement file encryption infrastructure to keep sensitive information secure […]
Thales recently announced the launch of the payShield Cloud HSM service, making it easier and more flexible for payment HSMs to migrate to the cloud. Our team at Prime Factors had the opportunity to be among the first to successfully test the new HSM service with our Bank Card Security System (BCSS) to ensure flexibility and full functionality […]
It’s time to start shifting the mindset from leveraging encryption as a sole data protection technique, to implementing a more robust, well-rounded approach that leverages multiple types of data protection methods seamlessly to define and enforce how data is protected, who can access it, and what form the data takes when access is granted. Encryption […]
Imagine if you could seamlessly integrate any new Payment Card Industry (PCI) PIN requirement, such as new Key Block mandates, throughout your custom payment application with minimal effort, saving time and reducing development costs. That’s a reality for many companies. Using Prime Factors Bank Card Security System (BCSS), integrating industry changes into in-house payment applications […]
Data has never been more plentiful or more valuable, nor has it ever been more at risk of breach. Though hundreds of billions of dollars are spent each year on cyber security, data breaches continue all over the world, and sensitive data is still frequently compromised. Why is this still happening? Surely, enterprises now […]
What surprised us in a recent inquiry with a leading global analyst firm was not the fact that they had seen an increase in tokenization inquiries of more than 700% year-over-year; we had been seeing the same spikes on our end. It was, rather, what was happening after the initial inquiries that caught our attention. […]
The majority of data breaches today are occurring at the application layer where sensitive information is more exposed and susceptible, however a joint research survey with Entrust revealed that less than 25% of respondents are actually applying data protection at the application layer, instead relying on data-at-rest encryption. The challenge is that data-at-rest encryption only […]
The year was 1981. It was a Wednesday, the first day of April. President Reagan was in the hospital recovering from gunshot wounds. Walter Cronkite was enjoying the first few weeks of his retirement after signing off from CBS Evening News. And just off of the University of California’s Berkeley campus on the eastern shores […]
I always find it interesting when our perceptions of how things work do not match up with reality. We were in a meeting not long ago with a large customer, discussing their encryption deployment, and a simple exchange highlighted a common misunderstanding of data protection: Us: “You may want to consider application level data protection so that your data is not in the clear when it leaves the database.” Customer (CEO): “What do you mean our encrypted data is […]
