Overview

By combining PGP's proven encryption engine with Cryptosoft's Enterprise Services for PGP, it is now possible to integrate PGP crypto technology into almost any enterprise application.

Cryptosoft Enterprise Service for PGP

Introducing Enterprise Encryption Services for PGP (ESP). ESP takes a unique approach to securing your sensitive business data and builds on the Software as a Service (SaaS) paradigm. ESP makes securing your data as simple as requesting a Web page. It can be deployed inside or outside of your organisation.

Cryptosoft Enterprise Services for PGP (ESP) provides organisations with an extremely flexible solution for incorporating PGP Corporations proven cryptographic technology into almost any business applications and messaging systems.

ESP has been designed around proven patterns and best practices for enterprise integration. Therefore, making it extremely easy to implement, often without having to make any changes to existing applications or infrastructures.

ESP's Data connectors provide the integration points to your applications. ESP provides several ready to use data connectors which provide access to the most common data transport protocols such as File Systems, FTP Servers, ESB's, Cloud Storage providers. If required additional bespoke connectors can be added to further extend ESP's integration capabilities.

Integrates with PGP KMS..........

Digitally signed event logging and auditing..........

Business Application Security

XML Data and Messaging Systems

Modern enterprises are rapidly increasing their use of XML and messaging technologies to exchange data between a wide range of business applications. This data is often if not always sensitive or confidential. The nature of XML based business processes means that it is not possible to simply encrypt the entire XML file or message before transmission because some of the data is used by the applications to determine how it should be processed or routed.

Since many organisations are already using PGP technology for securing data or providing Key Management Services (KMS) in other areas of their business, ESP makes it possible to extend the use of these services to any other application or process.

ESP can be easily configured to apply simple query filters (XPATH) to XML documents that determine what parts of a document should be encrypted or decrypted. More importantly the encryption/decryption keys can be retrieved from almost any key server or key store. XML data can be passed to ESP for processing using a simple HTTP API. ESP can also be configured to automatically consume messages from an Enterprise Service Bus (ESB) or other JMS or AMQP messaging system. Once processed, ESP can then publish a new message back to the messaging system for onward routing.

File Transfer Security

File systems, FTP, SFTP and WebDav

For organisations that require PGP integration with traditional file transfer protocols, ESP provides out of the box support for SMB, FTP, FTPS, SFTP and WebDav. In most cases ESP is simply inserted between the application responsible for creating the data and the local or remote endpoints. ESP rules can also be configured to provide data routing services from a single source to multiple different endpoints. For example files copied or moved into a single "watched" folder can be automatically encrypted or decrypted then routed to a local archive destination and a remote SFTP server. These rules also determine where to find the encryption/decryption keys. For example many organisations now externally publish their key servers, so rather than storing local copies of your trading partners keys, you simply configure ESP's rules to use an external key server. If the keys then change, ESP will always use the most recent version without additional administrative input.

Cloud Service Security

Amazon Web Services, Microsoft Azure and Dropbox

ESP's RESTful API's also means that it fits neatly into cloud based computing environments. It can be used as a data proxy to automatically secure data between organisations and external cloud service provides such as Amazon Web Services™ (AWS).

Cloud Storage Connector Cloud storage connectors enable ESP to be easily configured for sending and retrieving data blobs to and from Amazon Web Services™ or Microsoft Azure™. This scenario enables ESP to act as a secure data proxy between business applications and external cloud storage providers.

WEB Integration (Security as a Service) ESP's functionality, an HTTP (REST) API