Skip to content

StratoKey

How Field-Level Data Tokenization Reduces Compliance Scope

Field-level tokenization can replace regulated data with non-sensitive tokens pre-ingress. The original data never leaves your control or compliance boundary. The absence of the..

Practical Steps to Control AI Access to Regulated Data

AI tools are already inside most regulated environments. The compliance programs that govern those environments have not caught up. That is the gap. Your existing frameworks,..

What to Replace ServiceNow Edge Encryption With

ServiceNow Edge Encryption is entering end-of-renewal, with full end-of-life scheduled for December 2028. Every organization still running it needs a replacement plan. This..

Securing the Defense Manufacturing Supply Chain for CMMC Compliance

The Cybersecurity Maturity Model Certification (CMMC) does not stop at the prime contractor. It flows down through every tier of the defense supply chain to any organization that..

Encryption for GDPR Compliance: How StratoKey Secures SaaS Data 2025

The General Data Protection Regulation (GDPR 2016/679) unified data protection laws across the EU on 25 May 2018. It applies to any organization that processes or stores personal..

Final Rule Update: 48 CFR and the CMMC Contract Clause Are Now in Motion

On July 22, 2025, the Department of Defense submitted the final rule for DFARS Case 2019‑D041 to the Office of Information and Regulatory Affairs (OIRA). This rule amends Title 48..

Read Our CASB Guide

StratoKey has published a guide on Cloud Access Security Broker (CASB) features, functions and architectures. This guide is designed to dispel some of the myths about CASB vendors..

What is a CASB?

A CASB (Cloud Access Security Broker) is a gateway that sits between users and an end cloud application such as Salesforce, Office365 or any other cloud deployed application. The..

Australia to rethink Cyber Security Policies with Data Breaches Bill

According to the Australian Attorney-General's Department website, a proposed Bill will require Government agencies and businesses subject to the Privacy Act 1988 (Privacy Act) to..