Hewlett Packard Enterprise Delivers First-to-Market Data-centric IoT Security
FEBRUARY 14, 2017 • Press Release
HPE SecureData for Hadoop and IoT seamlessly integrates with Apache NiFi ecosystem, adding Format-Preserving Encryption to wide-scale dataflows
SAN FRANCISCO, Calif. – RSA Conference – February 14, 2017 – Hewlett Packard Enterprise (HPE) today introduced HPE SecureData for Hadoop and IoT, designed to easily secure sensitive information that is generated and transmitted across Internet of Things (IoT) environments, with HPE Format-preserving Encryption (FPE). The solution features the industry's first-to-market Apache™ NiFi™ integration with NIST standardized and FIPS compliant format-preserving encryption technology to protect IoT data at rest, in transit and in use.
While IoT provides a vast amount of data that can deliver valuable insights and analytics to help organizations innovate, the influx of connected devices also presents new security challenges and attack vectors. There have been a number of IoT exploits in recent years, such as hacking into a connected car, connected camera vulnerabilities, and DDoS attacks, but whats alarming is that this may only be the beginning as enterprises look to deploy IoT across their networks. According to a Gartner survey, security is the top barrier to IoT success cited by respondents (35%), followed closely by cost and funding concerns (32%).1
"While IoT and big data analytics are driving new ways for organizations to improve efficiencies, identify new revenue streams, and innovate, they are also creating new attack vectors for leaking sensitive information to adversaries," said Albert Biketi, vice president and general manager, HPE Security – Data Security, Hewlett Packard Enterprise. "HPE SecureData enables business users to easily build data security in, delivering persistent protection in IoT and big data ecosystems, and allowing organizations to securely innovate."
The data generated from IoT is a valued commodity for adversaries, as it can contain sensitive information such as Personally Identifiable Information (PII), Payment Card Information (PCI) or Protected Health Information (PHI). For example, a breach of a connected blood pressure monitor's readings alone may have no value to an attacker, but when paired with a patient's name, it could become identity theft and a violation of Health Insurance Portability and Accountability Act (HIPAA) regulations.
However, Apache NiFi, is an integrated data logistics platform for automating the movement of data between disparate systems. It provides real-time control that makes it easy to manage the movement of data between any source and any destination. Derived from the National Security Agency's Niagarafiles project, Apache NiFi is an open source platform that enables security and risk architects, as well as business users, to graphically design and easily manage data flows in their IoT or back-end environments. The HPE SecureData NiFi integration enables organizations to incorporate data security into their IoT strategies by allowing them to more easily manage sensitive data flows and insert encryption closer to the intelligent edge.
Additionally, as an expansion of HPEs alliance with Hortonworks, HPE SecureData for Hadoop and IoT is the only offering from a security vendor certified to seamlessly integrate with Hortonworks DataFlow (HDF™). This integration ensures information is secured throughout the dataflow management and streaming analytics process as HDF quickly collects, curates, analyzes and delivers insights in real-time, on-premises or in the cloud.
"In the new connected world, security, privacy, and data protection must extend beyond the data center to the intelligent edge, because there can be millions of different sensors with different protocols in different places capturing sensitive information," said Chris Sullivan, SVP Channels and Alliances, Hortonworks. "With Hortonworks and HPE, customers get an integrated real time, certified solution for securely streaming and analyzing their data."
HPE SecureData for Hadoop and IoT extends data-centric protection, enabling organizations to encrypt data closer to the intelligent edge before it moves into the back-end Hadoop Big Data environment, while maintaining the original format for processing and enabling secure Big Data analytics.
HPE SecureData for Hadoop and IoT is currently available globally as part of the HPE SecureData family. Additional information about this offering and other HPE Security solutions can be found at the HPE booth No. 3717, at the RSA Conference taking place this week in San Francisco. Keep up with the conference happenings by following the hashtag #RSAC and @HPE_Security.
About HPE Security
HPE Security helps organizations detect and respond to cyber threats while safeguarding continuity and compliance to effectively mitigate risk and incident impact. Delivering an integrated suite of market-leading products, services, threat intelligence and security research, HPE Security helps customers proactively protect the interactions among users, applications and data, regardless of location or device. With a global network of security operations centers and more than 5,000 IT security experts, HPE Security empowers customers and partners to safely operate and innovate while keeping pace with the speed of todays idea economy. Find out more about HPE Security at https://www.hpe.com/us/en/solutions/security.
Join HPE Software on LinkedIn and follow @HPE_Software on Twitter. To learn more about HPE Enterprise Security products and services on Twitter, please follow @HPE_Security and join HPE Enterprise Security on LinkedIn.
About Hewlett Packard Enterprise
Hewlett Packard Enterprise is an industry leading technology company that enables customers to go further, faster. With the industrys most comprehensive portfolio, spanning the cloud to the data center to workplace applications, our technology and services help customers around the world make IT more efficient, more productive and more secure.
(1) Survey Analysis: 2016 Internet of Things Backbone Survey, Gartner, January 2016
This document contains forward-looking statements within the meaning of the safe harbor provisions of the Private Securities Litigation Reform Act of 1995. Such statements involve risks, uncertainties and assumptions. If such risks or uncertainties materialize or such assumptions prove incorrect, the results of Hewlett Packard Enterprise could differ materially from those expressed or implied by such forward-looking statements and assumptions. All statements other than statements of historical fact are statements that could be deemed forward-looking statements, including any statements of the plans, strategies and objectives of Hewlett Packard Enterprise for future operations; other statements of expectation or belief; and any statements of assumptions underlying any of the foregoing. Risks, uncertainties and assumptions include the possibility that expected benefits may not materialize as expected and other risks that are described in Hewlett Packard Enterprises filings with the Securities and Exchange Commission, including but not limited to the risks described in Hewlett Packard Enterprises Registration Statement on Form 10 dated July 1, 2015, as amended August 10, 2015, September 4, 2015, September 15, 2015, September 28, 2015 and October 7, 2015. Hewlett Packard Enterprise assumes no obligation and does not intend to update these forward-looking statements.