Skyhigh Networks, the leading Cloud Access Security Broker (CASB), today announced that the United States Patent and Trademark Office has issued US Patent 9413730 to the company. This patent is the third patent granted for Skyhigh’s market leading Cloud Access Security Broker and covers encryption of data stored in cloud services using enterprise-controlled keys via cloud-based encryption gateways. This patented approach enables organizations to encrypt data across various SaaS applications (such as Salesforce, O365, ServiceNow) while avoiding the operational and user experience challenges of deploying an encryption gateway on-premises. This gives organizations the confidence to cloud-enable business-critical applications while meeting their security, compliance, and service performance needs.
Security experts agree that encrypting data in the cloud using enterprise-controlled keys is an important capability in protecting sensitive data and meeting security and compliance requirements. According to Gartner, "Implemented properly, data protection using encryption/tokenization, while the enterprise maintains control of the key/tokenization dictionary, can be a powerful way to protect sensitive data in the cloud. It can also prevent the cloud service provider from seeing it, if necessary, to satisfy compliance policy requirements." Gartner, Inc., How to Evaluate and Operate a Cloud Access Security Broker, Neil MacDonald and Craig Lawson, December 8, 2015.
“A Cloud Access Security Broker or a CASB is a critical component of our cloud security stack as we increasingly embrace the cloud for core business applications,” said Sameer Sait, VP, Corporate IT & Chief Security Officer for Arrow Electronics. “Furthermore, there is no question that the ability to encrypt corporate data with keys we manage and without degrading service performance or adding friction to the end-user experience is a must-have requirement when selecting a CASB platform for any organization.”
Several leading organizations across all major verticals are using Skyhigh’s patented cloud-based encryption gateway to encrypt sensitive data originating from any user (employee or third party), from any device (managed or unmanaged), and from any location (on-premises or remote) without friction and without backhauling the traffic back to their premises.
As a result, enterprises are able to achieve the three primary benefits:
- Encrypt PII, sensitive, confidential, or proprietary data stored in SaaS applications to meet both external and internal data compliance policies
- Enforce jurisdictional controls, enabling teams to use cloud services hosted outside of their country while complying with data privacy requirements that dictate data not leave the country, as they can encrypt data in country before it reaches an internationally hosted cloud provider
- Reduce the possibility of a unauthorized access to corporate data, such as a blind subpoena being used to collect an organization’s data from a cloud service provider without the organization’s knowledge.
“We are seeing growing demand from companies across all verticals to encrypt their sensitive corporate data in SaaS applications with customer-controlled keys,” said Kaushik Narayan, co-founder and CTO of Skyhigh Networks. “Our latest patent is tremendous validation of the innovation we are bringing to the market to address the most challenging security and compliance requirements in the cloud-first and mobile-first era.”
Skyhigh Networks, the cloud security and enablement company, allows enterprises to safely adopt cloud services while meeting their security, compliance, and governance requirements. Over 500 enterprises including Aetna, DIRECTV, General Mills, HP, and Western Union use Skyhigh to gain visibility, manage threats, ensure compliance, and protect corporate data across shadow and sanctioned cloud services. Headquartered in Campbell, Calif., Skyhigh Networks is backed by Greylock Partners, Sequoia, and other strategic investors.