Gemalto Safenet Solution for Industry
 

Financial Data Security

Financial service providers of all types are expanding their offerings to allow them to compete on a global scale, save costs, and improve the customer experience with value-added services. But as financial services evolve, organizations must ensure their information security solutions are truly able to protect the sensitive data being acquired and transmitted.

We can help. Gemalto is the market leader in financial data security for the world’s largest financial institutions, protecting over 80% of the world’s fund transfers, providing transaction security for five of the world’s largest central banks, and securing the majority of ATM transactions in Europe, the Middle East and Asia.

Data Security Confidence Index (DSCI)

In our recent study, 69% of IT decision makers said they are not confident their organization’s data would be secure if their perimeter security was breached.

Our Financial Data Security Solutions

Gemalto provides complete, data-centric protection for the most critical areas of financial services, enabling customers to securely implement new business services while effectively managing risk and achieving regulatory compliance.

Payment Security with HSMs

Today, Gemalto's industry-leading SafeNet solutions for transaction validation, transaction signing, key storage, and encryption are trusted to protect the majaority of the world’s fund transfers. In fact, we protect over $1 trillion in financial transactions each and every day. Gemalto's tamperproof SafeNet Hardware Security Modules (HSMs) are depended upon for a wide variety of payment security use cases, including:

• Securely issuing and managing PINs over the Web
• Point-to-point encryption (P2PE) for securing cardholder data throughout its entire lifecycle
• Securing electronic invoices via digital signatures
• Protecting SSL certificates that in turn ensure the privacy of online transactions

eBanking Security

Financial institutions must build an ecosystem for protecting identities and transactions. Gemalto recommends key strategies that banks can employ in order to effectively and efficiently combat today’s threats, and ensure identity and transaction security in eBanking.

Layered Security for Banks

Gemalto helps banks instill customer confidence by achieving core-to-edge protection. Our solutions enable banks to apply multi-layer security in a number of critical use cases of their businesses, including digital banking, transaction processing, and enterprise security.

Financial Data Compliance

Because organizations dealing with financial information are handling some of the most sensitive and targeted data, it makes sense that there are so many compliance regulations they must address.

Gemalto's SafeNet Identity and Data Protection solutions help you comply with applicable financial regulations and standards, including:

• Basel Compliance: Protect against financial and operational risks faced by the banking industry.
• GLBA Compliance: Regulates the protection of consumer personal information held by financial institutions
• J-SOX Compliance: Rules for the control of financial reporting to protect investors
• NCUA Compliance: Mandates that credit unions must design and implement an information security program to control identified risks
• PA-DSS Compliance: Ensures that applications securely store, process, or transmit sensitive cardholder data
• PCI-DSS 3.0 Compliance: Requires cardholder information be protected at rest, in use, and in motion
• SOX Compliance: Forms a structure for corporate information governance

"[SafeNet PIN Delivery] is a perfect example of how we strive to make banking secure and convenient for our customers. We are constantly seeking to adapt our products and services such that they fit in with their modern lifestyles."

–Ken Woghiren, Head of Architecture and Innovation for Citibank UK Consumer

CJIS Compliance Solutions

Criminal Justice Information Services (CJIS) Security Policy

A joint program of the FBI, State Identification Bureaus, and CJIS Systems Agency, the Criminal Justice Information Services (CJIS) Security Policy outlines the security precautions that must be taken to protect sensitive information like fingerprints and criminal backgrounds gathered by local, state, and federal criminal justice and law enforcement agencies.

The CJIS Security Policy contains specific requirements for wireless networking, remote access, encryption, certification of cryptographic modules, and minimum key lengths.

Criminal justice and law enforcement agencies should become familiar with the requirements set by the CJIS policy prior to procurement and deployment of affected systems.

Gemalto delivers remote access, multi-factor authentication, and encryption capabilities that ensure security of data throughout an organization, whether data is at rest, in transit, or in use.

Gemalto's SafeNet Products for CJIS Compliance:

Multi-Factor Authentication

Multi-factor authentication serves a vital function within any organization – securing access to corporate networks, protecting the identities of users, and ensuring that a user is who he claims to be. Our authentication-as-a-service, authentication management, and wide variety of authentication form factors enable organizations to establish and easily administer reliable access control policies, all while following strong authentication best practices.

Data-in-Motion Encryption

SafeNet High Speed Encryptors deliver certified Layer 2 network encryption, ensuring the most secure data-in-motion protection, maximum performance, near-zero overhead with “set and forget” management, and lowest total cost of ownership. CJIS-SP requires that data be encrypted when it is transmitted outside a secure facility, even within the same agency. SafeNet High Speed Encryptors can help provide control to protect the full life cycle of CJI in transit.

Data at Rest Encryption Products

In addition to SafeNet High Speed Encryptors, there are a broad range of SafeNet data encryption solutions that enable organizations to move past silo-constrained encryption and to centrally, uniformly deployed encryption in a scalable manner that spans the enterprise, and effectively control their CJI security policies. These solutions deliver unmatched coverage – securing databases, applications, personal identifiable information (PII), and storage in the physical and virtual data center and the cloud.

Healthcare Data Security Solutions

From medical records to insurance forms to prescription services, the healthcare business is a networked environment – allowing patient information to be shared and managed by a variety of parties and from a number of endpoints, each with their own level of security for protecting that information.

Networking is magnified tenfold by the introduction of the Internet of Things (IoT) to Healthcare, as the number of connected devices and the tremendous amount of data they collect increases substantially. Numerous IoT applications in healthcare, from remote monitoring to smart sensors and medical device integration, have the potential to not only keep patients safe and healthy, but to improve how physicians deliver care as well. But there is the question of how to keep all of that data secure, especially if it is being exchanged with other devices.

Maintaining the security of patient data is a complex proposition that affects:

• Every employee of a healthcare facility
• Every area of its IT system
• Every participant in the healthcare IoT ecosystem
• All vendors, partners, and insurers that work with the healthcare provider

It's no surprise cyber criminals see medical data as particularly valuable as it enables them to illegally obtain medical goods and services or sell the sensitive information. As is the case with the IoT, major security flaws can pose serious threats to the health and safety of patients. For example, criminals can remotely manipulate devices, including those that controlled dosage levels for drug infusion pumps and connected defibrillators.

As a result, it is crucial that organizations implement healthcare data security solutions that will improve patient care while protecting important assets and satisfying healthcare compliance mandates.

SafeNet Healthcare Data Security Benefits

• Comply with applicable regulations and standards, including:
  • HIPAA
  • HITECH
  • EPCS
  • PCI-DSS
  • State Data Breach Laws
  • EU's General Data Protection Regulation (GDPR)
  • Many more
• Protect the integrity of your medical applications
• Optimize workflows, allow doctors to receive real-time patient updates anywhere, and improve doctor/patient care with a secure IoT infrastructure
• Secure patient records and information, claim activity, and other medical transactions to ensure high efficiency, and security
• Identify and control the employees, customers, suppliers, patients, and partners accessing your applications and system
• Reduce implementation time and cost to ensure deadlines are met and fines avoided
• Eliminate the need for investing in disparate systems from different vendors
• Secure the exchange of records and information, claim activity, and other transactions amongst healthcare providers and insurers

Our Healthcare Data Security Solutions:

Multi-Factor Authentication

Control access to a range of medical systems, and become compliant with the DEA’s EPCS and other regulations. Our authentication solutions can be used not only to re-authenticate to EHR systems when issuing eRx’s for controlled substances, but also to secure remote access to EHRs for practitioners working off premises.

Hardware Security Modules (HSMs)

SafeNet Luna HSMs, combined with IAM solutions, provide high assurance protection of identities used to grant physical and logical access to users. HSMs also help protect transactions and applications, ensure data integrity, secure the IoT, and maintain an audit trail.

Data Encryption and Key Management

Data encryption and key management solutions protect and maintain ownership of data throughout its lifecycle — from the data center to the endpoint (including mobile devices used by physicians, clinicians, and administrators) and into the cloud.

High Speed Network Encryption

High-performance data in motion encryption solutions persistently protect information, ensure control beyond location or boundary, streamline operations, facilitate disaster recovery, and reduce compliance costs.

Retail Data Security Solutions

The everyday consumer assumes that when they make a purchase, either online or in the checkout-line, their card data is handed off to a trusted source with proper security in place. They don’t see the complicated ecosystem that exists to process that transaction, nor fully understand the retail data security mechanisms that make up the foundation for protecting customer data.

The retail ecosystem is complex. One compliance standard doesn't cover all vulnerabilities points. In order to offset the chance of a breach, it is critical for retailers to understand the vulnerability points, and establish a plan of action to mitigate the risks.

Retail Security Solutions for Protecting Customer Data

With the help of Gemalto's SafeNet Identity and Data Protection solutions, retailers can successfully protect customer data obtained from transactions and other operations and dramatically reduce the cost and complexity associated with regulatory compliance.

PCI DSS Compliance

For retailers, the most significant compliance mandate is the Payment Card Industry Data Security Standard—outlining a set of 12 that covers secure networks, the protection of cardholder data, the implementation of a vulnerability management program, guidelines for stronger access controls, and the establishment of an information security policy.

Customer Data Encryption and Tokenization

Beyond cardholder data, retailers need to protect all sensitive data wherever it exists, and limit access to this data. Utilizing encryption and/or tokenization is the most effective way to secure data, even when a breach has occurred.

Securing the Point-of-Sale Devices and Applications

Security needs to include the point-of-sale or point-of-interaction terminals, and the payment application software. These devices are more connected than ever before, and even more appealing target for an attacker. For this reason, code signing is used to issue unique identities, and securely push software updates to the devices in the field.

Point-to-Point Encryption

Point-to-Point Encryption encrypts card data from the earliest possible moment of its capture, and ensures that data remains in a consistent encrypted state until it arrives at the payment gateway. This approach is the cleanest approach to transaction protection.

eCommerce Security

eCommerce poses even different, but equally challenging issues, compared to the traditional retail environment. By creating an encrypted tunnel, through a secure socket layer (SSL), retailers are able to protect their online customers’ data from the earliest possible moment—establishing a secure, encrypted communication session to allow private information to be transmitted across open networks such as the Internet.

Secure Communications

Encrypting the high speed communication networks set-up between the store sites datacenter is a critical next step for securing the infrastructure and protecting customer data, cardholder data, and overall company information.

"In developing the Solve DataShield offering, it was vital that we effectively comply with all the relevant PCI P2PE standards, including robust key management policies. Gemalto SafeNet Luna EFT HSMs delivered all the security capabilities that were required, while providing a platform that we could deploy quickly and manage efficiently."

- Nick Stacey, Dir. of Business & Market Operations at The Logic Group

Security-as-a-Service Solutions for Service Providers

With increasing pressure to deliver convenient services and access to company data – from any device, anywhere in the world – enterprises will require solutions that can help expand their digital footprint while protecting their businesses. Because service providers are at the core of the information flow, they are uniquely positioned to deliver the convenient services/delivery models their customers require while mitigating the risks enterprises face with cloud-based security services.

Gemalto provides the security solutions and resources that enable service providers to deliver profitable, new managed security services to help their customers achieve compliance with stringent data privacy regulations and ensure that sensitive corporate assets, customer information, and digital transactions are safe – all while building margins and winning deals for your organization.

Our Partnership with Service Providers

Gemalto works with all types of service providers, including systems integrators, MNOs, telcos, and cloud providers, to help them build a Security-as-a-Service platform with fully-connected, centrally managed identity and data protection solutions that meet the needs of their customers today and scales tomorrow.

Security Solutions for Cloud Service Providers

Cloud providers can enhance trust in their cloud services platform by adding encryption, key management, and strong authentication and identity management solutions that enable their customers to remain protected, compliant, and in control of their data as they adopt cloud and hosted services.

Security Solutions for Telco Service Providers

Telco Service Providers are uniquely positioned to deliver trusted, convenient security services to customers, providing enterprises persistent protection of sensitive data, with scalable solutions for user authentication, encryption, and key management. All while increasing average revenue per user and reducing the Telco's liability.

Become a Service Provider Partner

Gemalto has developed a comprehensive portfolio of Identity and Data Protections solutions designed with the enterprise in mind but built with a go-to-market model for service providers. Partner with Gemalto to build a Security-as-a-Service platform to offer fully-connected, centrally managed identity and data protection solutions that meet the needs of customers today and scales tomorrow.

Gemalto’s solutions work in all environments from data centers all the way to multi-cloud environments, enabling your customers to secure applications, workloads, and data in whatever environments their businesses require today and in the future – all while building margins and winning deals for your organization.

Paths to Revenue Growth:

• Enhance your business model with on-going, annuity revenues for cloud-based services.
• Bundle Gemalto solutions with other products or services within your portfolio as a value-added service, increasing revenue per user.
• Accelerate innovation and increase revenue with Gemalto’s go-to-market enablement model offering sales training, professional services, marketing enablement, and sales support that help your organization quickly and efficiently bring new services to market and speed customer adoption.
• Offer more opportunities for professional services. Gemalto offers professional services packages giving you access to Gemalto experts to accelerate the offering’s deployment, so your organization can quickly recognize a return on investment.
• Through customized security consulting, Gemalto provides you with security solutions that are designed to address your customer’s needs.
• Build your security services portfolio to further monetize customer relationships with security solutions by Gemalto.