Containers Expo Blog Authors: Pat Romanski, Sematext Blog, Roger Strukhoff, Yeshim Deniz, Carmen Gonzalez

Blog Feed Post

Interview with Gilad Parann-Nissany of Porticor

 logo virtual Interview with Gilad Parann Nissany of Porticor



(Originally posted by Virtual Strategy Magazine here)

VSM: It’s been a while since we’ve spoken, not since Q1 around Porticor’s company and initial product launch. What has the company been up to?

GPN: Thank you for asking. Porticor has been growing on the customer and partner front, and working hard on product innovations, which is why we are talking today. Since our launch we have signed key partnerships, including with Amazon Web Services, VMware, and HP. Customers and the industry continue to validate our solution, and Porticor this year has won some significant industry honors, including being named as the Most Innovative Company of the Year by the Stevie Awards Program.

VSM: And you have a new major release with the Porticor Virtual Private Data security solution? Can you tell us about it?

GPN: Yes, we have extended the functionality of the Porticor Virtual Data system to now protect and keep confidential the encryption keys while they are in use, further protecting data in virtual and cloud environments. As a result, we are helping to assure organizations that they can trust their virtual and cloud data to be safe.

VSM: How is this different than what Porticor previously released to protect organizations’ private data stored in virtual and cloud environments?

GPN: Porticor’s new release protects the encryption keys while in use, and previously the solution protected only data at rest. Specifically, the earlier solution introduced the industry to our patented split-key encryption technology, which protects data encryption keys while they are stored (at rest) by keeping the keys safely in the hands of the customer, not the security vendor or cloud service provider. We have now added the additional security assurance to protect the encryption keys even while in use.

VSM: What are the new use cases that can now be achieved securely in the cloud, and why?

GPN: With this new solution, there are many new private cloud and public cloud use case applications that open up. For example, a virtual bank service that must segregate and encrypt users’ data can now fully benefit from a virtual environment using this solution. Using Porticor, the ISV can now provide a secured virtual bank service while using a public cloud infrastructure. The ISV does not trust anyone but itself with the encryption keys and provides trust and control to its end users, while knowing the most sensitive data – its encryption keys – are secured while at rest and while in use.

VSM: Aren’t there current solutions already available addressing these issues?

GPN: No solution available keeps data encryption keys securely in the hands of the customer; and specific to Porticor’s new release, no solution available protects encryption keys while they are in use to fully secure virtual and cloud data. This is because of an innovation Porticor has rolled out which is the industry’s first commercial use of a highly technical mathematical algorithm called partially-homomorphic encryption technology.

VSM: Can you describe homomorphic technology, and how it’s used to protect virtual and cloud data?

GPN: Homomorphic encryption is a technique that enables mathematical operations to be performed on encrypted data. Porticor’s patent-pending technology implements partially homomorphic encryption techniques for combining and splitting encryption keys. It enables the Porticor VPD system to give the application access to the virtual and cloud data store without exposing the keys in an unencrypted state. This also ensures that if a master key is stolen, it can still never be used to break the entire virtual and cloud data store.

VSM: What is different about your solution? Why is this important?

GPN: Porticor’s system is the industry’s first data protection service delivering true trust to virtual and cloud environments by ensuring customer encryption keys are never exposed, either at rest (stored) or in use. Porticor is also the only data protection system that delivers data security across virtual disks, databases, distributed storage and file systems. This is important because Porticor solves the remaining obstacle to trust in the cloud – protecting the entire data store while keeping the encryption keys secure at all times.

VSM: What are some of the other benefits of this new technology?

GPN: With a lack of trust in the cloud, organizations are inhibited from fully leveraging the well-known business benefits the cloud has to offer. Now, organizations can benefit from the latest in cloud encryption technology from Porticor to leverage the benefits of the cloud, all with full confidence that their data will remain confidential, while maintaining compliance and the highest levels of cloud security. Being fully secure, Porticor also helps organizations meet compliance requirements for regulations such as SOX, HIPAA, PCI DSS, GLBA, EU Data Protection and the US Patriot Act, in these virtual and cloud environments.

VSM: What can we expect to see from Porticor in 2013?

GPN: Porticor’s unique technologies are essentially a “root of trust” for private and public cloud users. During 2013 we expect to continue strong growth with customers in industries like Finance, Health, Insurance, Media and Manufacturing. This allows them to adopt private and public clouds while being defended against a significant variety of threats.

VSM: It’s been great chatting with you today. Anything else you’d like to share about the state of virtualized data protection or the new Porticor solution?

GPN: This is the first commercial application of this type of homomorphic key encryption technique, and I know that many are unfamiliar with it. Porticor’s approach is unique in that it is open to rigorous mathematical proof and cryptographic analysis under explicit and well defined assumptions. For example, Dr. Alon Rosen, a Cryptography expert from the School of Computer Science at the Herzliya Interdisciplnary Center, has independently performed rigorous analysis, resulting in a proof that the approach and its associated protocols “securely realize the intended functionality.”

The post Interview with Gilad Parann-Nissany of Porticor appeared first on Porticor Cloud Security.

Read the original blog entry...

More Stories By Gilad Parann-Nissany

Gilad Parann-Nissany, Founder and CEO at Porticor is a pioneer of Cloud Computing. He has built SaaS Clouds for medium and small enterprises at SAP (CTO Small Business); contributing to several SAP products and reaching more than 8 million users. Recently he has created a consumer Cloud at G.ho.st - a cloud operating system that delighted hundreds of thousands of users while providing browser-based and mobile access to data, people and a variety of cloud-based applications. He is now CEO of Porticor, a leader in Virtual Privacy and Cloud Security.

@ThingsExpo Stories
Data is the fuel that drives the machine learning algorithmic engines and ultimately provides the business value. In his session at Cloud Expo, Ed Featherston, a director and senior enterprise architect at Collaborative Consulting, will discuss the key considerations around quality, volume, timeliness, and pedigree that must be dealt with in order to properly fuel that engine.
Virgil consists of an open-source encryption library, which implements Cryptographic Message Syntax (CMS) and Elliptic Curve Integrated Encryption Scheme (ECIES) (including RSA schema), a Key Management API, and a cloud-based Key Management Service (Virgil Keys). The Virgil Keys Service consists of a public key service and a private key escrow service. 

The best way to leverage your Cloud Expo presence as a sponsor and exhibitor is to plan your news announcements around our events. The press covering Cloud Expo and @ThingsExpo will have access to these releases and will amplify your news announcements. More than two dozen Cloud companies either set deals at our shows or have announced their mergers and acquisitions at Cloud Expo. Product announcements during our show provide your company with the most reach through our targeted audiences.
Fact is, enterprises have significant legacy voice infrastructure that’s costly to replace with pure IP solutions. How can we bring this analog infrastructure into our shiny new cloud applications? There are proven methods to bind both legacy voice applications and traditional PSTN audio into cloud-based applications and services at a carrier scale. Some of the most successful implementations leverage WebRTC, WebSockets, SIP and other open source technologies. In his session at @ThingsExpo, Da...
Fifty billion connected devices and still no winning protocols standards. HTTP, WebSockets, MQTT, and CoAP seem to be leading in the IoT protocol race at the moment but many more protocols are getting introduced on a regular basis. Each protocol has its pros and cons depending on the nature of the communications. Does there really need to be only one protocol to rule them all? Of course not. In his session at @ThingsExpo, Chris Matthieu, co-founder and CTO of Octoblu, walk you through how Oct...
SYS-CON Events announced today that Embotics, the cloud automation company, will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Embotics is the cloud automation company for IT organizations and service providers that need to improve provisioning or enable self-service capabilities. With a relentless focus on delivering a premier user experience and unmatched customer support, Embotics is the fas...
The Internet of Things (IoT), in all its myriad manifestations, has great potential. Much of that potential comes from the evolving data management and analytic (DMA) technologies and processes that allow us to gain insight from all of the IoT data that can be generated and gathered. This potential may never be met as those data sets are tied to specific industry verticals and single markets, with no clear way to use IoT data and sensor analytics to fulfill the hype being given the IoT today.
More and more brands have jumped on the IoT bandwagon. We have an excess of wearables – activity trackers, smartwatches, smart glasses and sneakers, and more that track seemingly endless datapoints. However, most consumers have no idea what “IoT” means. Creating more wearables that track data shouldn't be the aim of brands; delivering meaningful, tangible relevance to their users should be. We're in a period in which the IoT pendulum is still swinging. Initially, it swung toward "smart for smar...
@ThingsExpo has been named the Top 5 Most Influential M2M Brand by Onalytica in the ‘Machine to Machine: Top 100 Influencers and Brands.' Onalytica analyzed the online debate on M2M by looking at over 85,000 tweets to provide the most influential individuals and brands that drive the discussion. According to Onalytica the "analysis showed a very engaged community with a lot of interactive tweets. The M2M discussion seems to be more fragmented and driven by some of the major brands present in the...
WebRTC has had a real tough three or four years, and so have those working with it. Only a few short years ago, the development world were excited about WebRTC and proclaiming how awesome it was. You might have played with the technology a couple of years ago, only to find the extra infrastructure requirements were painful to implement and poorly documented. This probably left a bitter taste in your mouth, especially when things went wrong.
The Quantified Economy represents the total global addressable market (TAM) for IoT that, according to a recent IDC report, will grow to an unprecedented $1.3 trillion by 2019. With this the third wave of the Internet-global proliferation of connected devices, appliances and sensors is poised to take off in 2016. In his session at @ThingsExpo, David McLauchlan, CEO and co-founder of Buddy Platform, discussed how the ability to access and analyze the massive volume of streaming data from millio...
SYS-CON Events announced today that Pulzze Systems will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Pulzze Systems, Inc. provides infrastructure products for the Internet of Things to enable any connected device and system to carry out matched operations without programming. For more information, visit http://www.pulzzesystems.com.
Successful digital transformation requires new organizational competencies and capabilities. Research tells us that the biggest impediment to successful transformation is human; consequently, the biggest enabler is a properly skilled and empowered workforce. In the digital age, new individual and collective competencies are required. In his session at 19th Cloud Expo, Bob Newhouse, CEO and founder of Agilitiv, will draw together recent research and lessons learned from emerging and established ...
Enterprise IT has been in the era of Hybrid Cloud for some time now. But it seems most conversations about Hybrid are focused on integrating AWS, Microsoft Azure, or Google ECM into existing on-premises systems. Where is all the Private Cloud? What do technology providers need to do to make their offerings more compelling? How should enterprise IT executives and buyers define their focus, needs, and roadmap, and communicate that clearly to the providers?
One of biggest questions about Big Data is “How do we harness all that information for business use quickly and effectively?” Geographic Information Systems (GIS) or spatial technology is about more than making maps, but adding critical context and meaning to data of all types, coming from all different channels – even sensors. In his session at @ThingsExpo, William (Bill) Meehan, director of utility solutions for Esri, will take a closer look at the current state of spatial technology and ar...
SYS-CON Events announced today that Streamlyzer will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Streamlyzer is a powerful analytics for video streaming service that enables video streaming providers to monitor and analyze QoE (Quality-of-Experience) from end-user devices in real time.
You have great SaaS business app ideas. You want to turn your idea quickly into a functional and engaging proof of concept. You need to be able to modify it to meet customers' needs, and you need to deliver a complete and secure SaaS application. How could you achieve all the above and yet avoid unforeseen IT requirements that add unnecessary cost and complexity? You also want your app to be responsive in any device at any time. In his session at 19th Cloud Expo, Mark Allen, General Manager of...
SYS-CON Media announced today that @WebRTCSummit Blog, the largest WebRTC resource in the world, has been launched. @WebRTCSummit Blog offers top articles, news stories, and blog posts from the world's well-known experts and guarantees better exposure for its authors than any other publication. @WebRTCSummit Blog can be bookmarked ▸ Here @WebRTCSummit conference site can be bookmarked ▸ Here
Cloud based infrastructure deployment is becoming more and more appealing to customers, from Fortune 500 companies to SMEs due to its pay-as-you-go model. Enterprise storage vendors are able to reach out to these customers by integrating in cloud based deployments; this needs adaptability and interoperability of the products confirming to cloud standards such as OpenStack, CloudStack, or Azure. As compared to off the shelf commodity storage, enterprise storages by its reliability, high-availabil...
The IoT industry is now at a crossroads, between the fast-paced innovation of technologies and the pending mass adoption by global enterprises. The complexity of combining rapidly evolving technologies and the need to establish practices for market acceleration pose a strong challenge to global enterprises as well as IoT vendors. In his session at @ThingsExpo, Clark Smith, senior product manager for Numerex, will discuss how Numerex, as an experienced, established IoT provider, has embraced a ...