| Email not displaying correctly? View it in your browser. |
 |
| V9 Shields Sensitive
Fields Simultaneously Transform and Secure Transaction Data Do your files, tables or reports contain private information about people, such as names, social security numbers, account or phone numbers? Whether at rest or in motion, that data may be at risk for identify theft. To prevent the growing problem of data privacy breaches, Innovative Routines International (IRI), Inc. released CoSort Version 9 last quarter with auditable, field-level security for sensitive files. CoSort's Sort Control Language (SortCL) program adds strong encryption for fields and records -- along with other protections -- to its parallel data transformation and reporting functionality. To accommodate your role-based access controls (RBAC) framework, you can choose the fields to protect, and the protection method for each field. For example, you can sort on and encrypt the social security number column, pseudonymize last names, group by and then mask the phone number, and standardize the address field -- all in the same job script and I/O pass. Consider how you can use the security features below in your data integration, staging, and BI operations: Encryption & Decryption AES-256 Is Just One of Many Options in CoSort's SortCL Tool Encryption
is the process of transforming information into a meaningless
"ciphertext" form. Only those with the proper key can decrypt and
read the information. CoSort's SortCL tool now has the ability to
encrypt data at the field level while manipulating one or more
sequential files of any size or format. You can use SortCL's
built-in 256-bit Advanced Encryption Standard (AES) algorithm, or
link in your own encryption and decryption routine as a custom,
field-level transformation. You can use different encryption keys or
routines on different fields at the same time, as your security
rules require. Data masking refers generically
to any process that replaces real data with fake data.
CoSort’s SortCL tool can mask data through
anonymization and pseudonymization, as well as through data-type
conversion, alternate character masking, and custom,
field-level transformations.
De-identifcation
is the process of removing personally identifying data from a
record. In the medical and insurance industries, HIPAA regulations
require the protection of both obvious and remotely connected
patient information. CoSort's SortCL tool can
also de-identify field data with a special encoding routine where
the code holder can re-identify the field. To re-identify the field,
specify the same code in another job script.
De-identification can
also occur through the techniques above or through filtering
(described below). |
More
Data Privacy Advice Click here to read "5 Tips for Protecting Sensitve Data" by health insurance data processing expert Darick Jarvis of EDIWatch, Inc. Click here to read the IRI Article "Mitigating Data Risk: An Introduction to Privacy Breach Prevention." An overview of the risk and costs of private data exposure is combined with a number of specific recommendations for protecting sensitive, personally identifiable information. Click here to read the IRI White Paper "Making Data Safe for Compliance and Outsourcing ... at the Field Level ... while processing ... while presenting." This document contains a consolidated working example (i.e. a SortCL job specification file) that processes and protects data in 2 input files, using 1 set file, and creating 5 output files in the same pass. CoSort Security in the News A google search shows the coverage we've been getting. Unique Data Security Benefits In addition to a choice of protections, there are several other benefits to CoSort data privacy, including: * Cost - Field-level security ships with CoSort so you don't pay additional fees, or need additional software or tools to secure private data. * Precision - Field-level security means your files and everything around them can stay unencrypted and thus "open for business." * Interoperability - CoSort's SortCL program runs on all Unix, Linux and Windows platforms, via command-line, batch, API call, or Java GUI. * Convenience - Field-level privacy functions run in the same job script and I/O pass with SortCL data transformation and reporting; i.e. you can protect your data at its source, during processing and presentation. * Flexibility - By working on portable flat files (i.e. .txt, .csv, .sam), as well as index, LDIF and XML data, you can protect data at rest and in motion, before and after data are loaded into databases or reporting (BI) tools, or outsourced. * Auditability - SortCL jobs can create an XML audit trial so you can query and report on the application details to prove how and when sensitive fields were protected, and thus verify compliance with industry and government data privacy regulations like HIPAA. * Prototyping - SortCL allows you to continue processing and sharing protected files by displaying ciphertext and other protected fields with printable characters, and by generating (safe) test data in any field within real file formats. Supported File Formats CoSort secures columns in the following file formats:
|
| You
should be receiving this newsletter on an opt-in basis as part of
your current or prospective business with Innovative Routines
International (IRI), Inc., The CoSort Company. If you wish to
opt-out at any time, simply unsubscribe with the link provided.
Opt-in and out actions are confirmed in writing. IRI does not
disclose email addresses to third parties. Unsubscribe all@iri.com from this list. Our mailing address is: IRI, Inc. (CoSort) 2194 Highway A1A Suite 303 Melbourne, FL 32937 Our telephone: 1.321.777.8889 Copyright (C) 2007 IRI, Inc. (CoSort) All rights reserved. Forward this email to a friend | |
