NuCypher leads the advancement of big data security with a state-of-the-art re-encryption cryptosystem for Kafka. Purpose-built for streaming sensitive data in compliance with strict governance and regulatory requirements, NuCypher enables granularly encrypted messages and brings encryption at-rest to the Kafka protocol. NuCypher arms security professionals with new capabilities for eliminating single points of failure and reducing their attack surface.
Uses AES256-GCM and standardized ECIES elliptic curve encryption (ANSI, IEEE, ISO, NIST curves).
Automated, policy-based encryption.
Protects sensitive data in AVRO and JSON file formats.
Cryptographic enforcement of ACLs.
Integrates with Ranger/Sentry and AD/LDAP authorization groups to protect against insider risks.
Fine-grained decryption permissions.
FIPS 140-2 Compliant.
Industry standard Key Management Interface Protocol (KMIP) support for leading Hardware Security Modules.
Data written to disk can now be protected at rest.
Our IT function is standardizing around Kafka for messaging, but our security and compliance needs are very advanced. With NuCypher, we're able to keep data encrypted broker-side and at-rest, which is key for future-proofing against regulatory changes.Head of Fixed Income Technology, Global Investment Bank