Postgres Encryption

Baffle's Data Protection Services simplifies tokenization and encryption of data in MySQL without any application code changes and virtually no performance overhead.

Customers may struggle when trying to protect sensitive data in a Postgres database. The methods that exist are clunky and require significant developer effort to implement and maintain. Further, many customers are migrating off of Oracle databases and encrypting data in cloud postgres databases and have a need to implement stronger security in the cloud. In addition, AWS Aurora also uses a very scalable and performant serverless implementation of Postgres and increasingly customers are storing more and more data in these cloud database platforms.

Without data-centric protection at the field level, attackers can easily get access to data as evidenced by the continued onslaught of data breaches. Yet, implementing such security measures can be time consuming and costly and difficult to enable.

Baffle's Data Protection Services simplifies tokenization and encryption of data in MySQL without any application code changes and virtually no performance overhead.

Customers have been incredibly impressed with the low to no performance overhead of Baffle's solution and the ease with which it integrates and supports cloud native services.

Postgres Encryption Demo

Watch this 2 minute 30 second video on encryption of an AWS RDS Postgres database.  This shows an in place migration to demonstrate how transparently Baffle can enable simplified data protection.

Data Protection Services

The Baffle Data Protection Service provides a transparent data-centric security layer that  offers several data protection modes.  Capabilities include data de-identification, tokenization, field level encryption, record level encryption, format preserving encryption (FPE) BYOK for SaaS, dynamic data masking, database encryption solutions such as file encryption, file content encryption, encryption API services, role-based access control (RBAC), privacy preserving analytics and secure data sharing.

Icon Usage Monitoring

Usage Monitoring

Monitor access to databases to identify patterns or anomalous behavior and profile applications

Icon Access Control

Role-Based Access Control

Define which systems, users or groups can access data stores and dynamically entitle who can see what data

Dynamically mask data at the presentation layer to obscure data values from specific users or groups

De-identify and tokenize data using format preserving encryption or deterministic encryption modes

Data-centric protection at the field or record level in data stores secures the actual data values

Provides an off-the-shelf BYOK service for SaaS vendors to support multiple customer-owned keys in multi-tenant environments

Encrypt files and de-identify data in cloud data lakes to enable AI and privacy preserving analytics

Utilizes Secure Multiparty Compute (SMPC) to enable operations on encrypted data such as wildcard and sort in MySQL, Postgres, SQL Server and other databases

Enable secure sharing of data across multiple parties without revealing private values to other participants

Schedule a live demo with one of our solutions experts to get answers to your questions