Enveil, the cybersecurity company that specializes in protecting data in use, introduced its latest innovation – ZeroReveal Compute Fabric – this week. The technology is a two-party platform that enables users to access a variety of Enveil’s ZeroReveal solutions to protect data in its most vulnerable state: when it is being used.
“Continued reports of chip flaws and data breaches in recent months make it clear that encrypting data at rest and in transit isn’t good enough in today’s volatile security environment,” Enveil founder and CEO Ellison Anne Williams explained. “Organizations must eliminate the Data in Use security gap and do so in a way that won’t negate investments in existing systems and protocols.”
“We allow you to securely use data where it is and as it is today, delivering nation-state level security – no system overhaul required.”
Ellison Anne Williams, Enveil founder and CEO, demonstrating the company’s technology at FinovateFall 2017.
Because most data needs to be decrypted when subjected to search or analytics, a potential vulnerability exists every time data is being accessed. With Enveil, this “last gap in data security” is sealed, giving enterprises the ability to securely work with both encrypted and unencrypted data in the cloud, on premises, and in between.
Enveil is an innovator in the field of homomorphic encryption, a protocol that has been known for more than 30 years but until now never practically applied to consumer use. In an article for Dark Reading last month, Williams pointed to the value of homomorphic encryption, which she referred to as the “holy grail” of cryptography.
“If we ignore the need to protect data while it’s being processed (in use), it really doesn’t matter how secure the data is on the way to the vault (in transit) or while stored in the vault (at rest); an attacker can simply patiently wait until the data is completely exposed during use to steal it,” Williams wrote. “Homomorphic encryption can ensure this final piece of the data security puzzle is solved by eliminating the data in-use security gap.”
This week, Williams referred to the company’s Compute Fabric as the first practical application of this technology. “And certainly the first to have any kind of nation-state security certification coming out of active deployment in the operational capacity,” she added.
Enveil’s Compute Fabric technology builds on the company’s previous client stand-alone application for point-to-point security during data use. The new solution represents an expansion of that product, providing more multiple deployment options and enterprise-wide security. Additionally, Enveil’s solutions do not require firms to replace their current cybersecurity systems in order to defend data in use.
Enveil demonstrated its data security technology at FinovateFall 2017. The company’s point-to-point solution featured a client application that encrypts operations and decrypts results. Enveil’s server application resides inside the environment of the data repository and processes encrypted operations over the data.
The company’s solutions are deployed in a variety of industries including financial services, healthcare, supply chain, and cloud security. Enveil has raised $4 million in funding and includes Thomson Reuters, In-Q-Tel, DataTribe, and Bloomberg Beta among its investors.