Nous contacter

IBM with SafeNet Data Security

About IBM

IBM helps promote a vibrant ecosystem to nurture and support products that extend the core value of IBM Security solutions for the design, development, and delivery of software and systems to support new security capabilities for our customers. Technology collaboration and integration helps to increase security coverage, collapse silos of information, and increase situational awareness and insights. IBM supports collaboration with Business Partners like SafeNet to enable the integration of product capabilities and improved security capabilities for customers. IBM offers several applications that integrate with SafeNet crypto management, encryption, and authentication solutions to provide users with powerful data protection solutions.

Overview

IBM offers several applications that integrate with SafeNet crypto management, encryption, and authentication solutions to provide users with powerful data protection solutions.

For an overview of SafeNet's integrations with IBM download the SafeNet Security Enhancements for IBM Solutions eBook.

IBM with SafeNet Data Security

1 New Orchard Road
Armonk, New York 10504-1722
United States
North America
Main Phone: 914-499-1900
russell.warren@us.ibm.com
(919) 254-1012

Integrated Application(s):

    IBM z/OS: Multi-Factor Authentication with SafeNet Authentication Service

    IBM MFA for z/OS provides a way to raise the assurance level of user authentication to z/OS applications and hosting environments by allowing the use of multiple authentication factors. 

    Gemalto’s SafeNet Authentication Service offers fully automated authentication delivered from the cloud to raise the assurance level that a user is who they claim to be, ensuring secure access to critical applications and data, with OTP-based strong authentication, whether using a hardware keyfob, mobile device, or grid-based authenticator.

    Resources and Additional Information

    Gemalto’s SafeNet Authentication Service support in IBM multi-factor authentication for z/OS helps maintain a secure infrastructure

    IBM Security Access Manager (ISAM) for Mobile: IAM with SafeNet Authentication Service

    IBM® Security Access Manager (ISAM) for Mobile 8 provides an integrated security management platform for authentication services, access control, authorization services, identity mapping, web single sign-on, entitlements, and audit services across the enterprise resources. 

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    Resources and Additional Information

    SAS Using EAI Agent for IBM Security Access Manager for Mobile 8 Integration Guide

     

    IBM Domino and Notes Traveler: SaaS and Web portal with SafeNet Authentication Solutions

    IBM® Notes® Traveler (formerly IBM Lotus® Notes Traveler) is mobile email software that provides quick access to email, calendar and contacts from a wide range of mobile devices or tablets. This no charge mobile offering is available for IBM Notes and Domino® users.

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    SafeNet Authentication Manager (SAM) is a comprehensive token management system. It is an out-of-the-box solution for Public Certificate Authorities (CA) and enterprises to ease the administration of SafeNet’s hardware or software tokens devices. 

    Resources and Additional Information:

    SAS Using RADIUS Protocol for IMC with IBM Domino Notes Traveler
    SAM Using RADIUS Protocol for IMC with IBM Domino Notes Traveler

    IBM Domino and Notes: SaaS and Web portal with SafeNet Authentication Services

    IBM Notes and IBM Domino are the client and server, respectively, of a collaborative client-server software platform marketed by IBM. The IBM Notes software client simplifies today’s complex world by integrating messaging, business applications, and social collaboration into one easy-to-use workspace.

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    SafeNet Authentication Client (SAC) is a PKI middleware application that provides a secure method for exchanging information based on public-key cryptography, enabling trusted third-party verification of user identities.  

    SafeNet Authentication Manager (SAM) is a comprehensive token management system. It is an out-of-the-box solution for Public Certificate Authorities (CA) and enterprises to ease the administration of SafeNet’s hardware or software tokens devices. 

    Resources and Additional Information:

    SAS Using SAML as an Identity Provider for IBM Domino
    SAM Using SAML as an Identity Provider for IBM Domino
    SAC Using CBA for IBM Notes

    IBM DataPower Gateway: Web Server and SafeNet Enterprise HSM

    IBM DataPower Gateway is a security and integration platform for mobile, cloud, application programming interface (API), web, service-oriented architecture (SOA), B2B and cloud workloads. It enables you to rapidly expand the scope of valuable IT assets to new channels—giving customers, employees and partners access to critical resources. It helps you quickly secure, integrate, control and optimize access to a range of workloads through a single, extensible gateway platform available in both physical and virtual form factors.

     

    SafeNet Enterprise HSM (formerly Luna SA) provides key management security for certificates and certificate-based authentication (including import of trusted CA certificates from software based keystore to hardware based keystores), self-signed certificate generation, and personal certificate requests via the IBM Key Management Utility. In addition, SafeNet Enterprise HSM offloads cryptographic operations such as signing for associated private keys, and accelerates SSL operations to free valuable compute resources on the server.

    The SafeNet Enterprise HSM is also available in the cloud (IBM SoftLayer or AWS) and can be used interchangeably with on premise SafeNet Enterprise HSMs to enable customers to move their sensitive workloads to the cloud.

    IBM z/OS: Encryption and Key Management with PKWare and SafeNet KeySecure
    IBM z/OS mainframe users can secure their sensitive data with PKWARE Smart Encyption Platform SecureZIP for z/OS. PKWare SecureZIP for z/OS is flexible; customers can embed encryption directly into their applications, or secure mainframe databases with field-level, length-preserving encryption. In any of its deployment scenarios, end-users see no change to their experience while organizations escape needing significant changes to their underlying infrastructure. As a bonus, the ability to compress data reduces strains on bandwidth and allows customers to derive greater return on storage investments.

    SafeNet KeySecure encryption and key management appliance secures and centralizes the administration of SecureZIP’s keys and certificates. Consolidating policy and key management simplifies administration to reduce the risk of errors and blindspots, while also freeing time for personnel to tackle other tasks. It makes key surveillance, rotation, and deletion easier which improves security.

    DB2 for IBM i for Power Systems: Database and File Encryption with SafeNet ProtectApp and SafeNet KeySecure

    DB2 for IBM i is an advanced relational database management system (RDBMS) that is pre-installed on the IBM i operating system. It supports applications and development environments running on the IBM i platform and uses several IBM Power System features, such as Dynamic Logical Partitioning, cost-based query optimizer, Capacity Upgrade on Demand, and PowerVM virtualization. The new FIELDPROC exit point in DB2 for IBM i allows users to secure sensitive application data with transparent encryption using third-party encryption APIs.

    SafeNet ProtectApp is an application encryption solution that integrates with DB2 for IBM i to encrypt data at the field and column level without requiring changes to the database or the format of the fields it secures. With SafeNet KeySecure, SafeNet ProtectApp also centralizes application encryption policy and key management to increase the level of control that administrators have over their data. SafeNet ProtectApp uses a comprehensive set of encryption and decryption APIs to secure data from applications written in COBOL, RPG, and Java, among other languages. Because encryption and decryption is transparent, end-users will not see any change to their experience and the data is secured in the database. In addition to the encryption solution for DB2 for IBM i, SafeNet ProtectApp offers APIs for digital signing and verification, secure hash algorithms (SHA), and hash-based message authentication code (HMAC), making it a versatile and important component of any organization’s security infrastructure.

    IBM Websphere MQ: Web Server and SafeNet Enterprise HSM

    IBM Websphere MQ is a messaging middleware that simplifies the integration of diverse applications and business data across disparate platforms. IBM MQ sends and receives message data through messaging queues to facilitate secure, reliable and assured information exchange between applications, systems, services and file. These queues simplify: business application creation and maintenance, deployment of enterprise-wide messaging, and connectivity for the internet of things and mobile devices.

    IBM Websphere MQ integrates with Gemalto's SafeNet Enterprise HSM to securely store keys used in SSL transactions. 

    IBM SoftLayer: Cloud-based Encryption Key Management and SafeNet Virtual KeySecure

    SafeNet Virtual KeySecure centralizes key management for SafeNet ProtectV-secured virtual instances, as well as other applications and devices in a hardened software appliance that runs in the IBM SoftLayer cloud. SafeNet Virtual KeySecure and the encryption it manages enables organizations to prove ownership of their sensitive data in IBM SoftLayer Cloud environments, increasing security and compliance. SafeNet Virtual KeySecure allows organizations to quickly deploy centralized key management in high-availability, clustered configurations. Additionally, SafeNet Virtual KeySecure ensures that organizations maintain ownership of their encryption keys at all times by hardening the appliance OS and encrypting the entire virtual appliance.

    Resources and Additional Information

    SafeNet ProtectV and SafeNet Virtual KeySecure in IBM SoftLayer Soution Brief

     

    IBM SoftLayer: Virtual Disk Encryption with SafeNet ProtectV

    SafeNet ProtectV virtual disk encryption offers security for virtual machines, storage volumes, and encryption keys residing in the IBM SoftLayer cloud. By encrypting the entire virtual machine instance and attached storage volumes, SafeNet ProtectV completely isolates data to allow for well-tailored separation of duties amongst IT administrators. SafeNet ProtectV’s StartGuard pre-boot authentication prevents any secured virtual machine instance from launching without proper authorization. SafeNet ProtectV encryption, and the data control it offers, allows organizations to migrate their sensitive workloads to the IBM SoftLayer cloud—no matter what level of security is needed. SafeNet ProtectV is available for sale on the IBM Cloud Marketplace.

    Resources and Additional Information

    SafeNet ProtectV and SafeNet Virtual KeySecure in IBM SoftLayer Soution Brief

    IBM i for Power Systems: Application Encryption with SafeNet ProtectApp and SafeNet KeySecure

    IBM i (including AS/400, i Series, and System i) is an integrated operating environment run on the IBM Power Systems server platform. IBM Power Systems using IBM i is designed to run business applications in an environment with preloaded core middleware intended to reduce setup effort and operational investment. IBM i supports virtual workloads, solutions from third-party ISVs, and IBM solutions such as DB2 and WebSphere.

    SafeNet KeySecure with SafeNet ProtectApp integrates with IBM i to encrypt application data as it is generated, helping organizations secure their data immediately in order to meet their security and compliance obligations. SafeNet ProtectApp uses a comprehensive set of encryption and decryption APIs to secure data from applications written in COBOL, RPG, and Java, among other languages. Because encryption and decryption is transparent, end users will not see any change to their experience - irrespective of the back-end database or file system in use, or the number of times data is backed up, stored, or copied. Additionally, SafeNet ProtectApp APIs can be used for digital signing and verification, secure hash algorithms (SHA), and hash-based message authentication code (HMAC). Whether it is unstructured data (such as Excel files and PDFs) or structured data (such as credit card number database fields), SafeNet ProtectApp secures a wide range of sensitive data from applications running on IBM i.

    Additional Information and Resources

     
    IBM i for Power Systems with SafeNet ProtectApp and SafeNet KeySecure solution brief

    IBM HTTP Server and Websphere Application Server: Web Server and SafeNet Enterprise HSM and SafeNet Authentication Client

    IBM WebSphere Application Server is a software platform for deploying enterprise Java based applications utilizing IBM HTTP Server. Websphere allows organizations to extend packaged and legacy programs – including applications from non-IBM servers such as Tomcat, JBoss and Oracle – to the web.

    SafeNet Enterprise HSM (formerly Luna SA) provides key management security for certificates and certificate-based authentication (including import of trusted CA certificates from software based keystore to hardware based keystores), self-signed certificate generation, and personal certificate requests via the IBM Key Management Utility. In addition, SafeNet Enterprise HSM offloads cryptographic operations such as signing for associated private keys, and accelerates SSL operations to free valuable compute resources on the server.

    SafeNet Authentication Client (SAC) is a public key infrastructure (PKI) middleware that provides a secure method for exchanging information based on public key cryptography, enabling trusted third-party verification of user identities. SafeNet’s certificate-based tokens provide secure remote access, as well as other advanced functions, in a single token, including digital signing, password management, network logon, and combined physical/logical access.

    Resources and Additional Information

    IBM Websphere Application Server and SafeNet Enterprise HSM integration guide
    Using SAC CBA for IBM WebSphere Application Server

    Securing IBM's XIV and A9000/A9000R Storage: Enterprise Key Management with Gemalto SafeNet KeySecure

    The Solution

    IBM's XIV and A9000/A9000R storage systems have several features built specifically for the needs of  big data. Built into XIVand A9000/A9000R is AES-256 encryption that secures the entire drive. SafeNet KeySecure integrates with these IBM platforms to store and centrally manage the keys for the system’s selfencrypting drives.
     

    Resources and Additional Information

    Securing IBM's XIV and A9000/A9000R Storage:  Enterprise Key Management with Gemalto SafeNet KeySecure  

    IBM QRadar: Security information and Event Management with SafeNet KeySecure

    The QRadar Security Intelligence Platform consolidates and organizes millions of points of data from network security events for better security and deeper, actionable, security insights. The platform unifies SIEM, log management, anomaly detection, and configuration and vulnerability management into one solution. Gemalto's SafeNet KeySecure’s centralized key management allows for detailed logs that can track key state changes, errors, and even application access. QRadar integrates these logs so administrators can visualize key management data for a proactive approach to enterprise key security.

    Resources and Additional Information

    IBM QRadar and SafeNet KeySecure Solution Brief

     

    IBM N Series NAS Filers

    Gemalto provides advanced encryption services based on high-speed, 256-bit AES encryption for IBM NAS-based storage solutions, featuring redundant components and clustered failover for high reliability. Strengthen existing LDAP, MS AD & NIS controls by adding an additional layer of access controls, secure data for compliance mandates, and protect offline data in archives from unauthorized access or theft.

    Resources and Additional Information

    SafeNet KeySecure and IBM N-Series Solution Brief

    IBM Global Security Kit (GSKit) Encryption Libraries: Encryption Key Storage with SafeNet Enterprise HSM

    GSKit provides libraries and utilities for SSL communication, enabling organizations to add encryption protection to over 200 IBM applications, including the IBM WebSphere Suite and IBM Security Access Manager (ISAM). Businesses stand to lose substantially – both in revenue and reputation – when there is a breach of online channels they use for communication, transactions, and applications. SSL encryption secures these web based communications and services. SafeNet Enterprise HSM (formerly Luna SA) stores SSL certificates in a tamper-proof hardware security module to serve as a reliable root of trust for network cryptographic operations. 

     Additionally, SafeNet Enterprise HSM offloads SSL operations from general-use servers, stores them within the hardware appliance for added security, and improves server performance. It can also provide true random number generation and streamline key administration by performing both symmetric and asymmetric key functions on a single platform. Together, IBM and Gemalto optimize the security and performance of online communications and transactions.

    Resources and Additional Information

    IBM GSKit and SafeNet Enterprise HSM flier

    SafeNet Enterprise HSM and IBM WebSEAL Solution Brief

    PureData for Transactions: Database Encryption with SafeNet KeySecure and SafeNet ProtectDB

     IBM PureData System for Transactions, powered by IBM’s DB2® database software, is a fully integrated system optimized for delivering highly scalable transactional workloads. Capable of consolidating more than one hundred databases on a single system, its active clusters ensure reliable data availability as systems scale. SafeNet KeySecure and SafeNet ProtectDB by Gemalto deliver powerful database encryption and centralized key management to secure sensitive data automatically as it flows into and out of PureData System for Transactions databases. Encryption takes place at the column level, altering existing tables to store the resulting ciphertext so customers benefit from security without losing important database functions.

    SafeNet KeySecure with SafeNet ProtectDB provides a fast, flexible, and seamless solution to address business needs and compliance requirements. IBM PureData System for Transactions provides highly scalable and highly reliable data services, ready in minutes, which Gemalto secures—making it an ideal combination for mission-critical enterprise applications.

    Resources and Additional Information

    PureData for Transactions and SafeNet KeySecure Solution Brief

    PureData for Transactions and SafeNet KeySecure White Paper

Back to Partner Search
Back to Top

Demande d'informations

Nous vous remercions de l'intérêt que vous portez à nos produits. Veuillez remplir le formulaire pour recevoir des informations supplémentaires sur SafeNet ou pour être contacté par un spécialiste SafeNet.

Vos informations

* Adresse électronique:  
* Prénom:  
* Nom:  
* Société:  
* Téléphone:  
* Pays:  
* State (US Only):  
* Province (Canada/Australia Only):  
Commentaires:  
 


En complétant ce formulaire, j’accepte de recevoir des informations de Gemalto et ses filiales, comme décrit dans notre Politique de Confidentialité.