Cloud Access Security Broker (CASB)

StratoKey is a single point (gateway) for enterprises to secure an entire suite of cloud and SaaS applications. As a Cloud Access Security Broker (CASB), StratoKey performs a number of tasks including access control, in-app encryption (and tokenization), monitoring (inc. audit capabilities), behavioral analysis and can institute defensive countermeasures as required. StratoKey implements enterprise security policies for cloud (and SaaS) applications and can be deployed either on premise or in the cloud.


Data Security - Encryption

StratoKey secures data by selectively encrypting (or tokenizing) sensitive information before it's sent to the cloud application. This encryption ensures that the end cloud application never holds sensitive information in plain text. StratoKey supports group policy based decryption, enabling organizations to directly control data decryption and prevent the inappropriate disclosure of sensitive information. Encryption and tokenization provide organizations with sole control and ownership of their sensitive data.

Integrations / Specifications:  HSM integration, AES 256bit, Format Preserving Encryption (FPE)

Identity Aware Authentication

Cloud Access Security Brokers

StratoKey sits between enterprise users and end cloud applications securing user access and hardening authentication. By directly interacting with users, StratoKey performs specific identity aware security tasks such as device fingerprinting, geo-locking and behavioral analysis among other measures to ensure that users are exactly who they say they are. StratoKey integrates seamlessly with common enterprise systems to ensure that deployment follows an interoperable approach.

Integrations:  Active Directory (incl. ADFS), SAML Single Sign-On(SSO), Okta, Ping, OneLogin, Centrify etc.

Cloud Visibility

StratoKey provides live monitoring capabilities that completely remove the SIEM blind-spot that can be exacerbated by the cloud. A standard feature of StratoKey is serving real-time access logs, user patterns, data consumption, device profiles, geolocations and much more through an complete monitoring interface. This interface provides complete visibility across an organization's entire cloud and SaaS application portfolio.

Interoperability with: Enterprise SIEM systems: ArcSight, Splunk, QRadar, LogRythm, SysLog

Security Analytics

StratoKey compiles security profiles on each user passing through the gateway. These behavioral profiles are compiled over time. Users are then benchmarked against their historical patterns and that of their peers. Behavioral Analysis implemented by StratoKey is crucial in detecting security anomalies, significant changes in behavior, outliers, and insider threats.

Specifications: Behavioral analysis, anomaly detection, outliers (vs peers), insider attacks and misuse.

Security Rule and Policy Enforcement

Being able to detect threats is not enough to prevent data breaches. StratoKey provides specialist security policy enforcement capabilities ensuring that threats are defeated upon first touch. StratoKey's security rules and policies are flexible and can respond depending on threat severity, from blocking connections, through to dispatching second factor challenges. StratoKey has a vast array of security rules that can be configured to meet an organization's data protection policies.

Adaptive Defense: Policies for OS/browser/mobile/device, behavioral driven, DLP and many more..

Compliance

StratoKey directly assists organizations in meeting strict privacy and data security requirements whilst using cloud and SaaS applications. Organizations can utilize StratoKey to meet encryption, monitoring, access control and other compliance requirements as specified in legislation such as HIPAA, FERPA, GLBA, GDPR etc. StratoKey has multiple DLP capabilities from direct internal DLP policies through to encryption of data to prevent unauthorized sharing.

Specifications: Data Encryption, Residency, Privacy and Compliance.

Complete CASB solution

CASB

StratoKey is the only vendor in the Cloud Access Security Broker market that offers a complete solution that is truly cloud and SaaS application agnostic. Through a unique architecture, StratoKey provides the ultimate flexibility for organizations securing their cloud and SaaS portfolio. StratoKey offers encryption, monitoring, behavioral analytics and security policy enforcement regardless of the end cloud or SaaS application.

Examples: Dynamics, Slack, ServiceNow, Salesforce, NetSuite, Office 365, G Suite, Box - and more!


Learn more about StratoKey

Download the StratoKey
CASB Guide