Secure Salesforce, Chatter and Force.com Data
Encrypt or Tokenize Data and Maintain Critical Functionality
Need Salesforce encryption or tokenization to protect your data? The PerspecSys Cloud Data Protection Gateway for Salesforce.com allows organizations to keep control of their sensitive business data while using Salesforce.com, Chatter and Force.com. Any sensitive information that leaves a business’ environment and enters the Salesforce.com cloud can be tokenized or encrypted, ensuring that data remains undecipherable when it is being processed or stored outside of the enterprise’s environment
How Does It Work?
The PRS Server is the core of our data protection solution. The PRS Server acts as forward proxy server operating between the Salesforce.com end user and the Salesforce cloud. The enterprise configures its data protection policies (cloud encryption and/or data tokenization) within the PRS Server. Salesforce.com encryption protects an organizations data when using the Salesforce cloud. The PerspecSys Salesforce.com Adapter interfaces with this server and, given its understanding of the application and data layer operation of Salesforce, plays the critical role of preserving end user functionality, such as the ability to “Search” and “Sort” data, in Salesforce.com and Force.com applications.
A management console permits authorized users to maintain data protection, administrative and security policies (such as permissions and access control) for sensitive data so that it can be protected before it is stored or processed in Salesforce.
Optional components that are also available are the Mail Transfer Agent Server (used to enable e-mail functionality for Salesforce) and the Reverse Proxy Server, which provides flexibility in deployment options, such as the ability to deploy the solution in DMZs or in the facilities of an organization’s IaaS partners. The Reverse Proxy Server provides the additional benefit of providing secure access to the PRS Server for remote users (without requiring them to VPN into the PRS Server).
Key Capabilities for Salesforce Encryption & Protection:
- Field-level data protection with user defined tokenization or FIPS 140-2 encryption options while preserving end-user cloud functionality
- Use of industry standard, well vetted encryption algorithms (not proprietary cryptography) or 3rd party validated tokenization techniques
- Mobile and remote users can be easily connected via a reverse proxy component
- Identify and restrict access and use of sensitive data through black and whitelists and through regional or group designations