• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
  • Data Masking Tool from Camouflage Now Supports DB2/400

    December 15, 2009 Alex Woodie

    System i shops that are concerned about the security of their sensitive data when it’s in the hands of outside developers should take a look at a data masking tool that recently became available from Camouflage Software. With the version 3.6 release of Camouflage Enterprise, the Canadian company is now able to obscure data stored in DB2/400, giving System i shops another weapon in their battle to protect personally identifiable customer data, and avoid the wrath of regulators.

    If IBM‘s recent acquisition of Guardium is any indication, database security is a big concern for Fortune 500 companies. While companies may have overlapping levels of security protection in place at the application and network levels, they have been leaving their critical data vulnerable to credentialed insiders who are already inside the firewall. That’s a big problem.

    Poised to be one of the hottest subsets of database security in 2010 is data masking. Data masking refers to the process of making data illegible to humans, but legible enough that it doesn’t impact activities like application development and quality assurance (QA) testing, which require a certain quality of data.

    IBM made a big move into data masking two years ago with its acquisition of Princeton Softech, which developed the Optim line of data archiving, data test management, and data masking software. Today the Optim software is a key component of IBM’s data management suite; however, the fact that Optim supports nearly all platforms except DB2/400 leaves a big hole that IBM’s competitors are glad to fill.

    There are several i OS data masking solutions available today from i OS security software vendors. However, for larger System i shops that run a variety of servers and databases, it makes sense to buy a single data masking solution that can cover all platforms.

    Camouflage Software offers such a tool. And while its data masking competitor dataguise may have been the first to announce its intention to provide data masking for DB2/400 , it appears that Camouflage Software beat dataguise to market with an actual product. In any event, expect more players to enter this space.

    Advantages Over Encryption

    There are a few things you should keep in mind if you are wondering whether to encrypt your database or mask it, says Ashar Baig, vice president of product development and marketing for Camouflage Software, which is based in St. John’s, Newfoundland, but which maintains a regional office in Toronto, Ontario.

    “It’s different than encryption because whatever you encrypt can be decrypted. Data masking, on the other hand, is a one-way process,” Baig says. “Secondly, encrypted data looks like 0s and 1s, which you can’t make any sense of. Conversely, masked data looks very similar to what normal data would look like. The only difference is, you can’t use it.”

    Masked data looks so normal that it’s nearly impossible for somebody to tell whether data has been masked, if it’s been done correctly. That’s because that data maintains its correct form: dates of births still contain eight numbers, Social Security numbers nine, and Visa and MasterCard numbers 16. (American Express uses 15 digits.) Camouflage Enterprise ensures that masked data does not deviate from certain ranges.

    There are various ways data can be masked, Baig says. “But the most important thing is the masked data looks real, so you can give it to your developers, your partners, and your customers. They want to see what your data looks like before they develop any applications for you, but they can’t make out any data. You can securely give that information to them, because they can’t use it.”

    Camouflage recently added support for System i servers and z/OS mainframes at the request of several customers, including a large bank in Greece, a federal agency, and a regional Blue Cross/Blue Shield organization. “Our Software is pretty much agnostic of platform, operating systems, and chipsets. But especially when it comes to DB2 on the mainframe and iSeries, there are certain system calls, certain data relationships, that you have to understand and test accordingly, before you claim support for it,” Baig says.

    Lots of Planning Required

    Camouflage Software is doing brisk business with its software, Baig says. Customers are often discouraged by IBM and others who say their large-scale data masking projects will take years to implement and cost into seven figures, which scares them, he says. “These larger companies bring in an end-to-end solution, even though the customer is saying ‘I just need masking, not all the bells and whistles.'” But they tell the customer they need it, and that it will take a long, long time.”

    It is true that data masking requires a lot of careful planning, but it can be accomplished in weeks or months, not years, according to Baig. The first step is finding out where sensitive data resides, and who needs access to it. Then customers must add additional columns to the database to house the masked data, and applications must be modified to look for the masked data instead of the real production data. (“We never touch production data,” Baig says. “That’s a no-no.”)

    The big obstacle to data masking is the need to periodically update the masked data. Because data is continually changing, the masked copy gets out of date. IBM has addressed this with the first so-called on-the-fly edition of its Optim data masking technology. Camouflage is also developing on-the-fly masking technology, which should be available sometime in 2010.

    Before then, version 4.0 will ship, which will include a new data discovery module, as well as pre-defined templates that will streamline the process of achieving compliance with regulations like PCI and HIPAA, Baig says.

    Camouflage sells two versions of its software, an Enterprise version and an SMB version, as well as a handful of add-on modules that includes the translation matrix, the subsetting engine, the de-masking engine, and database-specific masking templates for PeopleSoft Enterprise and Oracle E-Business Suite.

    The Enterprise version, which starts at $60,000, includes all of the add-on modules, whereas the SMB version, which starts at $15,000, includes just the data masking engine. SMB customers can purchase add-on modules for $10,000 each. There is also a quick-start package that costs $10,000 and includes implementation services, training, and education. For more information, visit the company’s Web site at www.datamasking.com.

    RELATED STORIES

    Data Masking Tool from dataguise to Get DB2/400 Support

    IBM Delivers Optim Archiving and Test Software for JDE, But Goofs Up i OS Support



                         Post this story to del.icio.us
                   Post this story to Digg
        Post this story to Slashdot

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Tags:

    Sponsored by
    ARCAD Software

    WEBINAR
    Unit Test Automation: Secure Application Quality on IBM i
    April 15, 12 p.m. EDT, 5 p.m. BST

    Unit testing is arguably the most effective element of your testing strategy, driving the quality of your application as it is being developed.  Yet how can unit testing benefit legacy applications on IBM i – and especially those containing ‘monolithic’ sections of code?

    In this Webinar we will demonstrate how specialized unit test automation can safeguard application quality and generate reusable test assets for both modular and monolithic code.

    You will learn how to automate the IBM i unit testing process within a standard DevOps stack., including RDi, JUnit and Jenkins.

    Using ARCAD iUnit, you’ll see:

    • Automated test creation for modules, programs and service programs
    • Code coverage results
    • Mock capability – simulates key components like data, files programs
    • Test execution history
    • Version control with Git

    Register today and secure the quality of your IBM i application.

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Sponsored Links

    10ZiG Technology:  Ask us about our new Ethernet Terminal for only $195!
    Bytware StandGuard Security:  Are you monitoring and auditing your System i security? FREE trial.
    Manta Technologies:  Year-End SALE! 40% off the complete library and all combo packs. Ends Jan 15

    IT Jungle Store Top Book Picks

    Easy Steps to Internet Programming for AS/400, iSeries, and System i: List Price, $49.95
    The iSeries Express Web Implementer's Guide: List Price, $49.95
    The System i RPG & RPG IV Tutorial and Lab Exercises: List Price, $59.95
    The System i Pocket RPG & RPG IV Guide: List Price, $69.95
    The iSeries Pocket Database Guide: List Price, $59.00
    The iSeries Pocket SQL Guide: List Price, $59.00
    The iSeries Pocket Query Guide: List Price, $49.00
    The iSeries Pocket WebFacing Primer: List Price, $39.00
    Migrating to WebSphere Express for iSeries: List Price, $49.00
    Getting Started With WebSphere Development Studio Client for iSeries: List Price, $89.00
    Getting Started with WebSphere Express for iSeries: List Price, $49.00
    Can the AS/400 Survive IBM?: List Price, $49.00
    Chip Wars: List Price, $29.95

    IBM Beefs Up Database Security with Guardium Buy Encouraging Mere Mortals

    Leave a Reply Cancel reply

Volume 9, Number 45 -- December 15, 2009
THIS ISSUE SPONSORED BY:

Infor
Bytware StandGuard Security
10ZiG Technology
VAULT400
Bug Busters Software Engineering

Table of Contents

  • Data Masking Tool from Camouflage Now Supports DB2/400
  • Manhattan Keeps Commitment Strong to System i Products
  • Apptio Tailors BI Software for the IT Department
  • Micro Focus Emulation Software Brings Windows 7 Support, New Interface
  • Property Tax Records Kept Safe, Thanks to i365
  • IBM Delivers Rational Migration Extension for Rich UI
  • IBM Updates Tivoli Job Scheduler
  • Inovis and GXS To Merge, Create B2B Behemoth
  • Barcode Printing From a Blackberry? Zebra’s Got You Covered
  • SafeData Moves Data Center to SAS Type II Facility

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • Query Supervisor Gives Database Engineers New Power
  • IBM Unveils New and Improved IBM i Services
  • 3 Takeaways from the 2021 PowerTech Security Report
  • Four Hundred Monitor, April 14
  • IBM i PTF Guide, Volume 23, Number 15
  • Big Blue Unveils Spring 2021 IBM i Technology Refreshes
  • Thoroughly Modern: Innovative And Realistic Approaches To IBM i Modernization
  • Guru: Web Services, DATA-INTO and DATA-GEN, Part 2
  • Back To The Future With A New IBM i Logo
  • IBM i PTF Guide, Volume 23, Number 14

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2021 IT Jungle

loading Cancel
Post was not sent - check your email addresses!
Email check failed, please try again
Sorry, your blog cannot share posts by email.