Alternatives to HashiCorp Vault

Satori is a Data Security Platform (DSP) that enables self-service data and analytics for data-driven companies. With Satori, users have a personal data portal where they can see all available datasets and gain immediate access to them. That means your data consumers get data access in seconds instead of weeks. Satori’s DSP dynamically applies the appropriate security and access policies, reducing manual data engineering work. Satori’s DSP manages access, permissions, security, and compliance policies - all from a single console. Satori continuously classifies sensitive data in all your data stores (databases, data lakes, and data warehouses), and dynamically tracks data usage while applying relevant security policies. Satori enables your data use to scale across the company while meeting all data security and compliance requirements.

GitGuardian is a global cybersecurity startup focusing on code security solutions for the DevOps generation. A leader in the market of secrets detection and remediation, its solutions are already used by hundred thousands developers in all industries. GitGuardian helps developers, cloud operation, security and compliance professionals secure software development, define and enforce policies consistently and globally across all their systems. GitGuardian solutions monitor public and private repositories in real-time, detect secrets and alert to allow investigation and quick remediation.

Access and access management today have become more complex and frustrating. strongDM redesigns access around the people who need it, making it incredibly simple and usable while ensuring total security and compliance. We call it People-First Access. End users enjoy fast, intuitive, and auditable access to the resources they need. Administrators gain precise controls, eliminating unauthorized and excessive access permissions. IT, Security, DevOps, and Compliance teams can easily answer who did what, where, and when with comprehensive audit logs. It seamlessly and securely integrates with every environment and protocol your team needs, with responsive 24/7 support.

Titaniam provides enterprises and SaaS vendors with a full suite of data security controls in one solution. This includes highly advanced options such as encrypted search and analytics, and also traditional controls such as tokenization, masking, various types of encryption, and anonymization. Titaniam also offers BYOK/HYOK (bring/hold your own key) for data owners to control the security of their data. When attacked, Titaniam minimizes regulatory overhead by providing evidence that sensitive data retained encryption. Titaniam’s interoperable modules can be combined to support hundreds of architectures across multiple clouds, on-prem, and hybrid environments. Titaniam provides the equivalent of at 3+ solutions making it the most effective, and economical solution in the market. Titaniam is featured by Gartner across multiple categories in four markets (Data Security, Data Privacy, Enterprise Key Management, and as a Cool Vendor for 2022). Titaniam is also a TAG Cyber Distinguished Vendor, and an Intellyx Digital Innovator for 2022. In 2022 Titaniam won the coveted SINET16 Security Innovator Award and was also a winner in four categories for the Global Infosec Awards at RSAC2022.

Secrets and confidential information should be shared with care. SharePass is the perfect solution for businesses who want to automate secret management and keep it all in one place securely online or on your phone - no matter where you're at. SharePass enables you to send encrypted links from sender to receiver with various settings. The settings include expiration restrictions, availability and IP restrictions which can be set through our patent-pending platform-independent sharing system. With its cutting-edge encryption and security measures, SharePass is committed to keeping your personal information safe. We cannot see what your secrets are, the only people who know are the ones sharing them. In this era of identity theft, SharePass will protect you and prevent your data from leaking to the dark web by eliminating all evidence that it was ever there. SharePass supports single sign-on with Office365, Google Workspace, MFA & integration for Yubikeys so maximum security is guaranteed.

Stop wasting time attempting to find API keys scattered around, or hacking together configuration tools that you don't know how to use, and stop avoiding access control. Doppler gives your team a single source for truth. The best developers automate all the work. Doppler will make it easy to find frequently-used secrets. You only need to update them once if they change. Your team's single source for truth. Your variables can be organized across projects and environments. You can no longer share secrets via email, Slack, email and git. Your team and their apps will instantly have the secret once you add it. The Doppler CLI, just like git, intelligently determines which secrets to fetch based upon the project directory you're in. No more trying to keep ENV files synchronized! Use granular access controls to ensure that you have the least privilege. Reduce exposure by using read-only tokens for service deployment. Access to only development for contractor? It's easy!

Immuta's Data Access Platform is built to give data teams secure yet streamlined access to data. Every organization is grappling with complex data policies as rules and regulations around that data are ever-changing and increasing in number. Immuta empowers data teams by automating the discovery and classification of new and existing data to speed time to value; orchestrating the enforcement of data policies through Policy-as-code (PaC), data masking, and Privacy Enhancing Technologies (PETs) so that any technical or business owner can manage and keep it secure; and monitoring/auditing user and policy activity/history and how data is accessed through automation to ensure provable compliance. Immuta integrates with all of the leading cloud data platforms, including Snowflake, Databricks, Starburst, Trino, Amazon Redshift, Google BigQuery, and Azure Synapse. Our platform is able to transparently secure data access without impacting performance. With Immuta, data teams are able to speed up data access by 100x, decrease the number of policies required by 75x, and achieve provable compliance goals.

TeamPass is a password manager that allows you to share passwords among your team members in a collaborative manner. Teampass has many features that allow you to organize your passwords and other data according to the access rights assigned to each user. Teampass can be customized to meet your needs and constraints. Teampass protects your data and users at multiple levels with encryption. It uses the Defuse PHP encryption library, which provides a highly secure cryptographic protocol. Teampass offers many options and features that you can customize to suit your needs. To achieve your team sharing goals, you will need to decide how to set up Teampass. Teampass allows you fine-tune user access rights to existing Items. Teampass can be used to control who has access to what data, depending on the policies in your area.

Onboardbase is a secret management platform that provides a single source of shared truth regarding app secrets and usage. It allows dev teams to securely share and work together with environment-specific configurations at every stage of development, synced across infrastructure and without compromising security. This allows developers to focus on building great apps and not managing secrets. Secrets are dynamically updated across your infrastructure and environments with 50+ integrations. Dev teams can track and audit how long, where, and when secrets are used. They can also revoke any usage with a click. Strong, always-on codebase scanning features prevent developers accidentally leaking secrets into production. This maintains a strong security model.

Secure vaults allow you to automate and protect access to credentials, keys and tokens across your DevOps tools, Cloud platforms, and API-Keys using your Cloud platforms.

Your private information is secured once data has been encrypted. Enterprise-level key management is required to protect that data. This solution offers high availability, standards-based enterprise key management to a wide variety of applications and databases. Alliance Key Manager is an FIPS 140-2 compliant enterprise manager that helps organizations comply with compliance requirements and protect private data. The symmetric encryption key management system creates, manages and distributes 128 bit, 192 bit, and 256 bit AES keys for all applications and databases running on any Enterprise operating systems. There are several ways to restrict encryption keys. The highest level of permissibility requires a secure, authenticated TLS session with the key server. Individual encryption keys can be assigned to groups of users or users within specific groups. Enterprise-wide groups can also be created. Keys can be restricted to Enterprise users, groups or specific users within groups.

Multi-cloud service networking platform that connects and secures services across any runtime platform or public or private cloud. All services are available in real-time location and health information. With less overhead, progressive delivery and zero trust security. You can rest assured that all HCP connections have been secured right out of the box.

KeySafe with AWS GovCloud allows government agencies and contractors to have independent control over their content encryption keys. This is especially useful for content that is citizen-only or ITAR. Your most valuable assets include unreleased screenplays, top secret designs, and patents for a new drug. These assets must be shared with your partners, contractors, and vendors to bring your ideas to the market. KeySafe allows you to keep your IP protected and not be exposed to third parties. Your clients trust you with their most sensitive information and can rest assured that their data is protected from unauthorised third party access. KeySafe helps you meet your legal and ethical obligations regarding the protection of client data. It allows you to set up appropriate controls to prevent or turn off access to documents and minimize reputation risks associated with someone else seeing your clients' data.

A data-first approach in cybersecurity can minimize costly data breaches and speed up regulatory compliance. Fortanix DSM SaaS is designed for modern data security deployments to simplify and scale. It is protected by FIPS 140-2 level 3 confidential computing hardware, and delivers the highest standards of security and performance. The DSM accelerator can be added to achieve the best performance for applications that are latency-sensitive. A scalable SaaS solution that makes data security a breeze, with a single system of record and pane of glass for crypto policy, key lifecycle management, and auditing.

Unified secrets management platform for engineers that can be used by all levels of the stack - from intern to admin - will improve security across the stack. Security risks can be created by putting API keys and passwords in source code. However, they are complex to manage and make deployment difficult. Email, Git, and Slack are meant to share information, not keep secrets. When you deploy software multiple times per week, copy-pasting values and waiting for one admin to hold all the keys doesn't scale. Compliance audits can be difficult because it is impossible to track who accessed which secrets at what times. Replace plaintext values with a reference. This will eliminate secrets from source code. SecretHub will then load secrets into your app automatically when it starts. You can use the CLI to encrypt or store secrets, and then tell the code where to find it. Your code is now unencrypted and can be shared with your entire team.

Encrypt your sensitive data before leaving the application so that the storage layer and adversaries only see ciphertext. Client-side encryption that is native to the application protects data against sophisticated attackers, supply chain attacks, and internal threats. Most at-rest encryption solutions - transparent disk encryption, full disk encryption, etc. They are ineffective for modern threats, because they give admins, key processes and attackers implicit access to plaintext. Ubiq’s developer-first encryption-as code platform eliminates this gap and bridges the divide between engineering and security teams. Lightweight, prepackaged encryption libraries and code that can be easily integrated into any application for native client-side cryptography and set-and forget key management.

Secure sensitive data wherever it flows - on premises, in the cloud and in big data analytics platforms. Voltage encryption provides data privacy protection and neutralizes data breaches. It also drives business value through secure data usage. Data protection builds customer trust, and enables compliance with global regulations such as GDPR, CCPA and HIPAA. Privacy regulations recommend anonymization, pseudonymization and encryption to protect personal data. Voltage SecureData allows enterprises to de-identify structured data and supports the use of data within its protected state to safely drive business value. Secure data flows through your enterprise without gaps, encryption, or overhead. SecureData supports a wide range of platforms and encrypts data using any language. Structured Data Manager integrates SecureData to allow businesses to easily and continuously protect data all through its lifecycle, from discovery through encryption.

Knox is a secret management system. Knox allows you to store and rotate secrets, keys, passwords, and other information. Pinterest has many keys and secrets that can be used to sign cookies, encrypt data, protect our network via TLS, access our AWS machines, communicate with third parties, and many other things. Rotating (or changing) keys can be difficult if they are compromised. This usually involves a deploy and most likely a code change. Pinterest keys/secrets were stored in git repositories. These keys were stored in git repositories and copied all over the company's infrastructure. They were also present on many employees' laptops. It was impossible to audit who had access to the keys and who did not. These problems were solved by Knox. Developers can access/use confidential keys and credentials with ease. Confidentiality of secrets, keys and credentials. In the event of compromise, provide mechanisms for key rotation.

EncryptRIGHT simplifies the application-level data protection by separating data protection policies and application programming. This allows for a complete separation between information security, application programming, and data security. EncryptRIGHT uses a Data Security Governance approach to define and enforce how data is protected. It also determines who can access the data and what format it will take once access is granted. The unique Data-Centric Security Architecture allows information security professionals to create an EncryptRIGHT Data Protect Policy (DPP) and bind it to data, protecting it no matter where it is stored, used, moved, or stored. Programmers don't need to be experts in cryptography to protect data at the application level. They simply configure authorized applications to call EncryptRIGHT to request that data be appropriately secured or unencrypted according to its policy.

Keywhiz is a system that manages and distributes secrets. It can be used in conjunction with service-oriented architecture (SOA). Here's a brief overview in presentation format. Common practices include placing secrets in config files alongside code and copying files to servers outside-of-band. The former is more likely to be leaked, while the latter is more difficult to track. Keywhiz makes it easier and safer to manage secrets. Keywhiz servers in clusters centrally store secret information encrypted in a database. To retrieve secrets that they have access to, clients use mutually authenticated TLS(mTLS). Authenticated users administer Keywhiz via CLI. Keywhiz offers automation APIs that allow for workflows. Every organization has services and systems that require secrets. Secrets such as API tokens, GPG keys and TLS certificates/keys. Keywhiz is reliable and can be used in production. However, API backward compatibility may be broken by occasional changes.

Our platform allows businesses to use data, including its application in advanced analysis, machine learning and AI, to do great things without worrying that customers, employees or intellectual property are at risk. The Protegrity Data Protection Platform does more than just protect data. It also classifies and discovers data, while protecting it. It is impossible to protect data you don't already know about. Our platform first categorizes data, allowing users the ability to classify the type of data that is most commonly in the public domain. Once those classifications are established, the platform uses machine learning algorithms to find that type of data. The platform uses classification and discovery to find the data that must be protected. The platform protects data behind many operational systems that are essential to business operations. It also provides privacy options such as tokenizing, encryption, and privacy methods.

It's easy to prevent data leakage in your app. Acra encryption suite offers data protection in distributed apps, web and mobile applications with PostgreSQL MySQL, KV backends. Regulations (GDPR, HIPAA and PCI DSS) require encryption of sensitive and personal data. It can be tedious to integrate cryptography into distributed applications. This has limited security benefits and requires many architectural trade-offs. Acra is here for that. Acra is a tool that covers 9 data security measures. Acra is designed to protect data from leakage and provide protection throughout the entire data lifecycle. Acra is easy-to-integrate, requires no modifications to the existing code, provides reliable security, and reduces MTTD/MTTR. Acra is an integration library that can encrypt all records with AcraServer key.

The VGS Vault allows users to securely store their tokenized data. This secures your most sensitive data. There is nothing to be stolen in the event of a breach. It's impossible to hack what isn't there. VGS is the modern approach in data security. Our SaaS solution allows you to interact with sensitive and regulated data while avoiding the responsibility of protecting it. You can see the interactive example of how VGS transforms data. You can choose to hide or show data by choosing Reveal or Redact. VGS can help you, whether you're a startup looking for best-in-class security or an established company seeking to eliminate compliance as a barrier to new business. VGS assumes the responsibility of protecting your data, eliminating any risk of data breaches, and reducing compliance overhead. VGS layers protection on the systems for companies that prefer to vault their data. This prevents unauthorized access and leakage.

Privacy1 infrastructure brings transparency, safeguards GDPR | CCPA compliance, builds trust for your business. The solution shields your data centric organizations, lower data leak risks, ensures that no personal data is processed except with the right permission. The service has built in rich features you need to meet data compliance requirements and enforce your organizational data security to the highest level

AWS Secrets Manager protects secrets that allow you to access your services, applications, and IT resources. This service allows you to easily manage, retrieve, and rotate database credentials, API keys, as well as other secrets, throughout their lifecycle. Secrets Manager APIs can be called by users and applications to retrieve secrets. This eliminates the need to hardcode sensitive data in plain text. Secrets Manager provides secret rotation with integrated integration for Amazon RDS and Amazon Redshift. The service can also be extended to other types secrets, such as API keys and OAuth tokens. Secrets Manager allows you to manage access to secrets with fine-grained permissions. You can also audit secret rotation centrally for resources in AWS Cloud, third party services, and on-premises. AWS Secrets Manager allows you to safely rotate secrets without the need for code deployments.

Our enterprise-grade Privileged Access Management solution (PAM), will protect your privileged accounts. Available on-premise and in the cloud. Solutions for privileged account discovery, turnkey installations, auditing and reporting tools as well as out-of-the box auditing and reporting help you get up and running quickly. You can manage multiple databases, software applications and hypervisors. You can create endless customizations by utilizing cloud and on-premise PAM. You can either work with professionals or your own experts. Secure administrator, root, service, and application privileges across your enterprise. Secure your privileged credentials in a central vault. To prevent sprawl and get a complete view of your privilege access, identify all service, administrator, root, and application accounts. Provision and deprovision, password complexity and rotation credentials.

The link can only once be opened. This means that it cannot be opened more than once. After it has been viewed, the encrypted secret is deleted automatically from our database. It is impossible to view it again. Leaving secrets in plain text exposes them even to threats long after the message is gone. A one-time link is a way to ensure that there are no valid credentials in email inboxes, or archived instant messages. The link contains half of the encryption key and is never shared with anyone. Without the original link, it is impossible to view the secret. You can use our service to create a unique link to the credentials. This will ensure that no one sees them except the recipient. You can also set up notifications to be sent via various channels so that you know when credentials have been viewed and by whom.

Snowflake makes it easy to manage sensitive data quickly and easily. This will allow you to get more value in less time than waiting months. ALTR allows you to automatically classify sensitive data by checking a box on import. You can add controls such as data masking using a drop-down menu. From a single screen, you can set alerts and limits for data access by user, amount and IP address. There are no extra costs or hassles on the prem, no proxies that can be broken with platform changes, and no managed services disguised under SaaS. ALTR was created in the cloud and integrates seamlessly with platforms such as Snowflake. ALTR's complete control over data allows you to visualize data usage, detect anomalies, alert on them, block threats, and tokenize important data. All your data is protected. ALTR is cloud-based so there's no upfront cost. You can start ALTR for free and then upgrade as necessary.

Modern Infrastructure as Code. Use familiar programming languages and tools to create, deploy, manage, and monitor infrastructure in any cloud. One workflow for many clouds. On any cloud, you can use the same language, tools, or workflow. Collaborate. Harmonize your engineering practices among developers and operators. Easy continuous delivery. You can deploy from the CLI or integrate with your favorite CI/CD software. All changes are reviewed before they are made. Reduce complexity. Get visibility across all your environments. Audit and secure. Know who made changes to what, when and why. With your identity provider of choice, enforce deployment policies. Secrets management. Secure secrets with an easy-to-use encrypted configuration Familiar programming languages. You can define infrastructure in JavaScript or TypeScript, Python, Go or any other.NET language including C#, F# and VB. Use your favorite tools. Use familiar IDEs and test frameworks. Reuse and share. Codify best practices.

This suite of integrated encryption products will help you comply with industry regulations and protect your file and database data. IBM Security Guardium Data Encryption is an integrated suite of products that are built on a common infrastructure. These highly-scalable solutions offer encryption, tokenization and data masking capabilities. They also have key management capabilities. This allows you to protect and control access to files, databases, and containers in the hybrid multicloud-securing environments that include on-premise, cloud, virtual, big-data, and on-premise assets. Organizations can comply with industry and government regulations by securely encrypting file or database data using such functionalities like tokenization, key rotation, data masking, and data masking. Guardium Data Encryption's capabilities, such as data access audit logging and tokenization, key management, data masking, data masking, and data masking, help meet regulations like HIPAA, CCPA, or GDPR.

Baffle provides data protection that is universal from any source to any destination. You can control who has access to what data. Enterprises continue to fight cybersecurity threats like ransomware and breaches and losses of data assets in private and public clouds. New data management restrictions and considerations about how it must be protected have altered the way data is stored, retrieved and analyzed. Baffle believes data breaches and data loss will not occur. Our last line of defense is to ensure that attackers cannot access unprotected data. Our data protection solutions protect data from the moment it is created and keep it safe while it is being processed. Baffle's transparent security mesh for cloud and on-premise data offers multiple data protection modes. You can protect data as it moves between a source data store and a cloud database or object storage. This ensures safe consumption of sensitive information.

Enigma Vault is your PCI Level 1 compliant and ISO 27001 certificated payment card, data and file easy button to tokenization and encryption. It is difficult to tokenize and encrypt data at field level. Enigma Vault does all the heavy lifting for you. Your lengthy and expensive PCI audit can be simplified into a simple SAQ. You can greatly reduce your security risk and PCI scope by storing tokens rather than sensitive card data. Modern technologies allow you to search millions of encrypted values in just milliseconds using modern methods. We fully manage the solution and can adapt it to your needs. Enigma Vault tokenizes and encrypts data of any size. Enigma Vault provides true field-level security. Instead of storing sensitive data you store a token. Enigma Vault offers the following services. Enigma Vault makes crypto and PCI compliance easy. You don't have to manage or rotate private keys, nor deal with complicated cryptography.

iSecurity Field Encryption provides protection for sensitive data with strong encryption, key management, and auditing. Encryption is essential for protecting confidential information and expediting compliance to PCI-DSS and other state privacy laws. Ransomware can attack any file it can access, including connected devices, mapped network driver, shared local networks, cloud storage services, and cloud storage service that are mapped to infected computers. Ransomware doesn't discriminate. Ransomware encrypts all data files it has access to, even the IFS files. Anti-Ransomware quickly detects cyber threats of high volume from an external source and isolates them. It also protects performance and prevents data from being damaged.

Securely authenticate, control, and audit non-human access across tools and applications. Secrets allow access to tools, critical infrastructure, and other sensitive data. Conjur protects these secrets by tightly controlling them with granular Role-Based Access Control. Conjur authenticates an application that requests access to a resource. It then checks the security policy against the authorization and distributes the secret securely. Conjur's security policy is code. Security rules are written in.yml format, checked into source control and loaded onto Conjur. Security policy is treated as any other source control asset. This adds transparency and collaboration to the organization’s security requirements.

Bravura Safe is a zero knowledge secret and passwords manager. It centrally manages and secures decentralized passwords and secrets, so employees don't have too. It can be used in conjunction with core password management solutions already in use by organizations. Bravura Safe draws on two decades of Bravura Security enterprise cybersecurity solutions. Employees can securely send time-bound passwords to new accounts, encryption keys to files, or entire files to Bravura Secure. They don't have to be leaked or intercepted and only need one password to their BravuraSafe. Cybersecurity leaders should be concerned about the recent rise in threats of organizational insiders being paid for their assistance with cyberattacks. This is combined with a notoriously bad secret and password hygiene at an individuals level. IT teams have been focusing on strong SSO, password management and identity, but the rise of work-from-home IT has led to shadow IT.

Key Vault helps you to improve data protection and compliance To protect cloud data, secure key management is crucial. Azure Key Vault can encrypt keys and small secrets, such as passwords, that are stored in hardware security module (HSMs). You can import or generate keys in HSMs for additional security. Microsoft processes your keys using FIPS validated HSMs (hardware, firmware, and hardware) - FIPS 140-2 level 2 for vaults, and FIPS 140-2 level 3 for HSM pools. Microsoft can't see your keys or extract them with Key Vault. You can monitor and audit key usage with Azure logging-pipe logs to Azure HDInsight, or your security information management (SIEM), for more analysis and threat detection.

Create secrets using the API or the management console. Your secrets are stored safely in one place and can be easily integrated with cloud services. They are also accessible by external systems via the gRPC API or REST API. Yandex Key Management Service can be used to encrypt your secrets. Secrets are only kept in encrypted form. You can select from pre-configured roles to gain granular access. Set access permissions for reading or managing your secret or its metadata. Create a secret and select a Key Management Service key to securely store your login and password pairs and other sensitive data. A secret can contain any confidential information you have, such as a login-password pair. A login-password combination, server certificate keys or cloud service account key. The service can store multiple versions of data for each secret. This data is stored in an encrypted form by the service. All secrets are replicated across three availability zones.

Entropy offers a seamless, secure transition from your trusted circle to your digital assets in the event of an emergency. Security that is User-Friendly Entropy allows you to securely partition your important information into discrete share, which each do not reveal anything about your secret without the other. Distribute them to a small group of trusted people who can store them offline. Long-Term Resilience Entropy's robust security features include 256-bit encryption. This allows for decentralized, durable offline storage that protects your data against both online and offline threats.

Protect your secrets, sensitive data, and personal information in the cloud with keys. Create and delete key, set access policies, perform rotation via the Management Console, CLI or API. Yandex KMS supports both symmetric and asymetric cryptography. Use the REST API or RPC to encrypt, decrypt, and sign data using eSignature schemes. Yandex KMS manages access to encrypted data while you control the physical security and reliability of keys. Hardware Security Modules are available. SDKs in Java or Go can be used to encrypt small amounts. The service integrates popular encryption libraries such as the AWS EncryptionSDK and Google Tink to encrypt large amounts of data. Yandex Lockbox integration allows you to encrypt secret data with your own keys. Managed Service for Kubernetes also allows you to protect secrets and data using encryption keys.

Evervault can help you go from zero to audit ready in less than one day. Evervault is compatible with all cardholder data flows so you can collect PCI data in a compliant manner for processing, issuance or storage. In most cases, our PCI scope will be reduced to the SAQ A set of controls -- the smallest PCI DSS control set. We will work with you to fully understand your architecture, and make recommendations on how to integrate Evervault in order to reduce your compliance scope to the maximum. We'll help you integrate Evervault using one of our templates, and then we'll verify your integration to make sure it's fully-compliant. We will provide you with a PCI DSS policy and procedure bundle that is audit-ready, as well our PCI DSS Attestation Of Compliance (AoC). We'll introduce you to an Evervault-trained auditor.

Configuration as code. Pipelines are created with a simple, readable file that is then committed to your git repository. Each step of a pipeline is executed in a Docker container, which is automatically downloaded at runtime. Any source code manager. Drone.io seamlessly integrates with multiple source code management system, including Bitbucket and GitHubEnterprise. Any platform. Drone natively supports multiple operating system and architectures, including Linux x64/ARM/ARM64/Windows x64. Any language. Drone can communicate with any language, database, or service that runs within a Docker container. You can choose from thousands of Docker images, or create your own. Make and share plugins. Drone uses containers to drop preconfigured steps into your pipeline. You can choose from hundreds of pre-made plugins or create your own. Drone allows for advanced customization. You can create custom access controls, approve workflows, secret management, yaml syntax extension, and other features using drone.

Comprehensive endpoint encryption. Trellix Complete Data Protection is available in two packages. It provides enterprise-grade drive encryption, access control and monitoring of user behavior. Trellix ePolicy Orchestrator allows you to manage Apple FileVault for macOS and Microsoft BitLocker for Windows PCs. Secure network file sharing and protect removable media like USB flash drives and data stored in cloud storage services. Trellix Complete data protection--Advancesd features data loss prevention and full-disk encryption. Device control is also available. Data is rendered unreadable in the case of device theft or loss. Our enterprise-grade endpoint encryption solution has been certified by Common Criteria EAL2+ and FIPS 140-2. You can control which file types and folders you want to encrypt/block. You can encrypt files to cloud storage services like Box, Dropbox, Google Drive, Microsoft OneDrive, and Google Drive.

Remote working has made it more critical than ever to protect computers and data. Full disk encryption is a critical first line of defense against theft or loss of laptops. Sophos Central Device encryption leverages Windows BitLocker as well as macOS FileVault to protect devices and data.

The AuricVault®, tokenization service, protects your sensitive financial and personal data. It stores that data safely and replaces it with a token. Tokens are random strings containing numbers and letters that have no relation to the stored data. Even if someone stole all your tokens they would still not have any sensitive data. Data separation is what tokenization does. Data separation ensures that no one entity has all data at once. Auric's tokenization solution allows for fine-grained permissions to allow one or more parties access to sensitive tokenized data. Depending on your business model and other factors, the AuricVault®, tokenization service may exempt your systems or servers from PCI scope. We help businesses secure billions of dollars and millions in transactions safely, securely, and easily.

The solution protects card payments by hiding sensitive cardholder data everywhere. FIS®, Tokenization™, dynamically encrypts card payments to ensure ultimate security whether customers pay online, via their phone or at a store. Our payment tokenization solutions help you to comply with the Payment Card Industry Data Security Standard, protect your cardholders, and manage risk by replacing sensitive cardholder information with unique tokens. Reduce fraud risk by replacing sensitive cardholder data with a unique token. Cardholders can load their card credentials into different payment apps securely and quickly. Reduce the scope of PCI DSS-compliant systems to simplify compliance.

Skyflow allows you to run workflows, logic, and analytics on encrypted data. Skyflow uses multiple encryption and tokenization methods to ensure maximum security. With auditable logs, provenance, and data residency, you can manage access to your data and policy enforcement. Compliance is possible in minutes, not weeks. It's easy with our trusted infrastructure and simple REST or SQL APIs. Tokenization is required for compliance. An encrypted data store allows you to search, analyze, and make use of secure data. Skyflow can be run in any virtual private cloud you prefer. It can be used as a secure gateway, zero trust storage, and many other purposes. Replace a difficult-to-maintain patchwork of point solutions with a single cost-effective data vault. You can use your sensitive data in any application or workflow without ever having to decrypt it.

Compare secrets between environments to see what is different or missing. Set personal values to secrets, either for sensitive secrets or during local development. You can easily inherit other secrets in order to establish a single truth. Infisical’s continuous monitoring and pre commit checks can be used to automatically identify and prevent leaks of secrets into git. Support for over 140 secret types.

Cloud-native vaultless tokenization platform maximizes data security and solves data privacy concerns. You can focus on your business with peace of mind and time when you know that your business exceeds compliance requirements. Increasing operating costs, ransomware threats, and ongoing audits of compliance are all challenges that organizations face. Rixon gives you the confidence to take your business to the world, while keeping you safe. The Rixon Privacy platform drives business results by giving organizations the tools to deliver Security, Compliance, and Privacy to the business and applications they support. Rixon's patented tokenization technology eliminates sensitive data from being exposed within your applications. Sensitive data is securely ingested, and converted into smart security tokens that protect the data against unauthorized data access.

Enterprise servers can be vulnerable and a central point of information exchange. Users and applications can upload infected files to a server even from within the network. This can spread to other systems. Large organizations may have thousands or hundreds of servers that need to be monitored, configured, and maintained. Today's sophisticated attacks can target multiple points in a network, leaving behind undetected trails of damage and the possibility of re-infection. Trend Micro™, ServerProtect™, delivers the most reliable virus, rootkit and spyware protection in the industry while simplifying and automating server security operations. ServerProtect scans for malware in real-time and includes cleanup capabilities to remove malicious code and repair any system damage.

You alone have complete control over the encryption. All Systems - One solution. The patented template concept allows you to use the eperi® Gateway to protect your data for all of your (cloud-based) applications. The eperi®, Gateway allows your employees to continue working normally while it encrypts the data transparently, preserving the central functions (such as sorting and searching) of your applications. Cloud applications can be used while remaining compliant with financial industry regulations, such as privacy-preserving analytics. IoT is a collection of smart machines and products which collect data automatically and independently. You can protect your data and ensure compliance with the law by using encryption.