Crypteron
Try Free
Log In
  • Features
  • Pricing
  • Documentation
    • Developer Guide
    • Frequently Asked Questions
    • Support
  • Compliance
    • Compliance FAQ
    • PCI compliance (eCommerce)
    • HIPAA compliance (Healthcare)
    • Security Checklist
  • Blog
  • Contact
Log In Try For Free

CipherDB

For SQL databases and ORMs

Building back-end applications and need to secure SQL databases containing sensitive data? Crypteron’s CipherDB is your ultimate data security solution. Featuring ultra-fast integrations, your organization can build secure, compliant applications without worrying about complex encryption details.

CipherDB extends ORMs like Entity Framework, NHibernate, Hibernate or JPA bringing encryption and key management to your critical application in minutes instead of months and years.

Try it Free Today!
CipherDB
  • Features
  • How It Works
  • Azure Marketplace
  • Live Demo
  • Sign Up for Free!

Don’t Become The Next Data Breach Headline!

Adding military grade encryption and key management to your backend application shouldn’t be difficult. CipherDB makes it easy. Simply add a [Secure] attribute (.NET) or @Secure annotation (Java) above any sensitive class property. CipherDB will automatically secure this data with AES-256-GCM encryption before it’s persisted to the database and decrypt it on the way back. No application rewrite is necessary. CipherDB integrates with Crypteron’s security platform which takes care of key management, multiple security partitions, auditing, access control rules and more, all from an intuitive dashboard. The encryption keys are themselves encrypted and stored separately from the application as well as database. Your data is always safe and always protected.

Prevent Data Breaches

Data stored in the cloud is inherently insecure. CipherDB solves this problem by encrypting your sensitive data at the source, before it ever leaves your application, reducing the circle of trust.

Regulatory Compliance

CipherDB allows you to build applications in the public cloud that comply with standards like HIPAA, PCI, FIPS-140-2, CJIS / Law Enforcement, FISMA, EU Data Protection and more, even when the underlying databases don’t support it.

Developer-Friendly

CipherDB was created by developers, for developers. We have SDKs for .NET and Java that take minutes to install and don’t require any significant changes to your application.

Self-Scaling Architecture

Our stateless security architecture scales with your application for near native performance at any scale. The overhead is marginal at about 1 ms per record containing multiple encrypted fields.

Works With Any Cloud Provider

CipherObject is fully compatible with any cloud provider. Whether it’s public cloud providers like Amazon Web Services, Microsoft Azure, Google Cloud Platform, Oracle, IBM etc. Crypteron can even work inside your private data center!

Works With All SQL Databases

By integrating directly with Entity Framework, NHibernate and Java Persistence API (JPA / Hibernate), CipherDB is able to support all popular databases including SQL Server, SQL Azure, Oracle, IBM DB2, MySQL, Amazon RDS, PostgreSQL, Sybase and more.

How It Works

.NET Microsoft Entity Framework - Code First Example

After adding the CipherDB SDK to your application using NuGet, add one line of code to your database context constructor to open a CipherDB enabled session.

public class Context: DbContext
{
    public Context(): base()
    {   

    }
    public DbSet<SampleEntity> SampleEntities{ get; set; }                
}    

public class Context: DbContext
{
    public Context(): base()
    {   
        Crypteron.CipherDb.Session.Open(this);
    }
    public DbSet<SampleEntity> SampleEntities{ get; set; }                
}

Add the attribute [Secure] to any properties of your entity that you want to encrypt.

public class SampleEntity
{
    public SampleEntity()
    {
    }
    public int SampleEntityId {get; set;}
    public string Description {get; set;}
    public string CreditCardNumber {get; set;}
    public string SocialSecurityNumber {get; set;}
}

public class SampleEntity
{
    public SampleEntity()
    {
    }
    public int SampleEntityId {get; set;}
    public string Description {get; set;}
    [Secure]
    public string CreditCardNumber {get; set;}
    [Secure]
    public string SocialSecurityNumber {get; set;}
}

NOTE: A database-first approach is supported as well. See the Documentation for details.

Java Persistence API – Hibernate Example

After installing the CipherDB SDK to your application using Maven, add the annotation @Secure to any properties of your entity that you want to encrypt.

public class SampleEntity
{
    public SampleEntity()
    {
    }
    @Id
    @Column(name="SampleEntityId") 
    private int SampleEntityId;

    @Column(name="Description") 
    private String Description;

    @Column(name="CreditCardNumber") 
    private String CreditCardNumber;

    @Column(name="SocialSecurityNumber") 
    private String SocialSecurityNumber;
}

public class SampleEntity
{
    public SampleEntity()
    {
    }
    @Id
    @Column(name="SampleEntityId") 
    private int SampleEntityId;

    @Column(name="Description") 
    private String Description;

    @Secure
    @Column(name="CreditCardNumber") 
    private String CreditCardNumber;

    @Secure
    @Column(name="SocialSecurityNumber") 
    private String SocialSecurityNumber;
}

And that’s it! Your sensitive data is automatically signed and encrypted before being transmitted or persisted. The data is then decrypted on the way back so the rest of your application can function normally without worrying about data security. It’s that easy!

See It In Action (2 Minute Video)

CipherDB in the Cloud

CipherDB in the Cloud

Despite their excellent infrastructure, major cloud databases like Amazon RDS and Microsoft Azure SQL do NOT provide robust data-at-rest security. Traditional database encryption stores data and encryption keys on the same server, right next to each other! Features like SQL Transparent Data Encryption (TDE) do not protect your data from those who gain access to the database. Finally, since you do not own or maintain the database servers, the cloud providers will always have administrative access to your data.

The bottom line is that data stored in the cloud is inherently insecure. In order to achieve true data security, you need to encrypt your sensitive data at the source before it ever leaves your server application.

Surveys and reports all point out that the #1 reason why companies cannot benefit from cloud computing is because of security and privacy concerns, especially when dealing with sensitive data such as medical records or financial information.

Don’t let your organization miss out on the cloud computing revolution! With CipherDB you’re in control of your data, regardless of where it’s stored. The encryption keys are stored on a separate server and encrypted themselves with elliptic curve cryptography.

CipherDB works with any cloud provider including

CipherDB on Premises

CipherDB on Premises

For on-premise or hybrid applications, CipherDB provides multiple layers of encryption that are essential for defense-in-depth and secure-by-designs principals through application layer encryption.

Lower maintenance and higher reliability will attract more and more organizations towards a pure public cloud solution. In the meantime, CipherDB’s strong encryption and automatic key management helps out in almost every situation

Key Management and more with Crypteron

CipherDB integrates with Crypteron’s security platform which handles key management, multiple security partitions, access control rules, auditing, key rotations, key migrations and more. Crypteron encrypts your encryption keys and stores them separately from the application and your data, so your data is always secure.

Crypteron’s security platform includes an easy-to-use dashboard at my.crypteron.com.

View all of your Apps

Crypteron Dashboard - Apps

Each App can be optionally divided into multiple Security Partitions

Divide your App into Security Partitions

Each Security Partition has an Access Control List where you can specify roles and permissions

Specify an access control list

Compliance in the Cloud

Compliance in the Cloud

CipherDB makes it possible to deploy your application to the public cloud while also complying with your organization’s security policy or 3rd party standards such as HIPAA, PCI, FIPS-140-2, CJIS / Law Enforcement, FISMA, EU Data Protection and more.

HIPAA Compliance

CipherDB satisfies sections of the Security Standards and Safeguards under HIPAA. Security and privacy of patient medical records is impossible to achieve in the cloud paradigm without encryption. If you properly encrypt your data and a data breach takes place, you are not liable for negligence

PCI Compliance

Any company that touches credit card information, must secure that data in order to be PCI compliant. If the data is stored in a database, it must be encrypted within the storage medium and the encryption keys must be properly managed. Failure to do so cause the vendor to be stripped of its ability to accept credit cards and be subject to hefty fines.

CipherDB Makes Compliance Simple

In order to be compliant, most organizations either abandon the public cloud or build their own encryption infrastructure which takes a tremendous amount of time, resources, and technical expertise. CipherDB provides the best of both worlds, allowing you to take advantage of the cloud while taking care of the entire process of encryption, key management and key migrations. Your team can now focus on your core business and not waste time and resources solving a problem already solved and solved well.

Learn more about compliance with CipherDB

Under the Hood

Under the Hood

Briefly stated, CipherDB uses FIPS-140-2 certified elliptic curve cryptography and AES 256 bit in the latest GCM mode to protect your data. The encryption is so robust that even the National Security Agency (NSA) recommends it for the protection of government and military classified information. In fact AES256-GCM is even permitted to encrypt sensitive data classified as “TOP-SECRET” – the highest classification level possible. CipherDB’s use of 521-bit elliptic curve cryptography is stronger than 15,000-bit RSA.  With CipherDB you get that level of encryption with marginal overhead – just about 1 ms per record containing multiple encrypted fields. Plus database operations usually travel over a network, which means the real world performance is almost the same as using no encryption at all. The technical specification document can be found here. More details can be found in our developers guide.

  • Code Example
  • CipherDB in the Cloud
  • CipherDB on Premises
  • Key Management
  • Compliance in the Cloud
  • Under the Hood

Microsoft Azure Marketplace

In addition to being able to sign up here Crypteron has partnered with Microsoft to make it available through the Microsoft Azure Marketplace. Signing up has never been easier for Microsoft Azure customers. All billing is handled through your existing Azure subscription so no credit card is required!

Find Crypteron in the Microsoft Azure Marketplace today!

True, next-gen cloud databaseCurrent cloud deployments
Product Microsoft Azure SQL Amazon RDS SQL Server Amazon RDS MySQL SQL Server MySQL
Type Database-as-a-service Infrastructure-as-a-service
(VMs in the cloud)
Industry trend
Data-at-rest encryption No encryption possible, application layer encryption like CipherDB required for any security Application responsible for key management and orchestrating T-SQL scripts to encrypt/decrypt on each access. Data and keys both reside together. "Security" through insecure AES-ECB cryptography (keysize doesn't matter) Application responsible for key management and orchestrating T-SQL scripts to encrypt/decrypt on each access. Data and keys both reside together. "Security" through insecure AES-ECB cryptography (keysize doesn't matter)
Why CipherDB? Enables Strong data encryption to protect your data-at-rest. Application shielded from security complexities. Key management handled by CipherDB. Data and keys reside separately. Application shielded from security complexities. Key management handled by CipherDB. Data and keys reside separately so a database server breach still keeps your data safe. More secure and advanced AES-GCM modes at 256bit key sizes. Even the National Security Agency (NSA) approves AES256-GCM for protecting top-secret government secrets. Application shielded from security complexities. Key management handled by CipherDB. Data and keys reside separately. More secure and advanced AES-GCM modes at 256bit key sizes.
Infrastructure management Fully automated. Full independence from underlying (virtual) hardware.
Database administration costs drastically reduced		 Mostly automated. Partial dependence on the specifications of the underlying (virtual) hardware.
Database administration costs reduced.		 Fully responsible for the management, patching and upkeep of your virtual servers. Database administration is still a complex task requiring a dedicated operations team.
Scale and reliability Excellent Good Moderate scalability. Reliability a challenge as you are responsible for server maintenance.

Recent blog posts

Encryption

Migrating existing live data into Crypteron

You’re already live in production. And you have sensitive in the clear. Read this article to see how Crypteron can help.

code

Encryption, Entity Framework and Projections

Projections in Entity Framework live outside the entity lifecycle. Read more to learn how your can use Crypteron to secure such data.

KeyManagement

PCI DSS and key rotations simplified

PCI compliance requires data encryption keys to be changed frequently. Here is how you can do it easily.

google-cloud-exploitation-featuredimage

Your data-center is not secure and what you can do about it

There is no secure perimeter anymore. Neither in your corporate network nor in your data center. Fight a winning battle armed with self-protecting data rather than a losing one trying to protecting the infrastructure.

startup-whiteboard

Introducing the Crypteron Startup Innovators Program

Qualifying startups get up to 50% off all plans. Tell us how you’re changing the world and the our Startup Innovators Program will support your journey.

banner

6 encryption mistakes that lead to data breaches

If encryption is so unbreakable, why do businesses and governments keep getting hacked? Six common encryption mistakes that lead to data breaches.

community

Announcing the new Crypteron Community Edition

Starting today you can now sign up for the Crypteron Community Edition for free with no performance limitations.

mouse

Data breach response – One click to save your business

Get breathing room – when you need it the most. Respond to a data breach with a single click.

crowd

Why We Need Proper Data-At-Rest Encryption: 191M U.S. Voters’ Data Exposed

Adding security at the application level is a large step forward in protecting data from the constant threat of data breaches

code

How to encrypt large files

CipherStor is blazingly fast! Here we show how to use it within your data-flow pipeline to maintain high performance when encrypting large files.

Company

  • Executive Team
  • Contact us

Legal

  • Terms of Service
  • Privacy Policy

Social

  • Twitter
  • Facebook
  • LinkedIn

© Crypteron™ 2013 and protected by one or more patents.
Crypteron, CipherDB, CipherStor, CipherObject, TotalAuth and DosCipher are all trademarks of Crypteron Inc. All rights reserved.

Try Crypteron for Free!

Registration is almost complete! We sent an email to:

Please check your email to activate your account. If you do not receive an email, please contact support.