►
From YouTube: NYC* 2013 - "Security at Gazzang" (Lightning Talk)
Description
Speaker: Eddie Garcia, VP of Development at Gazzang
Topic: Security at Gazzang (DataStax Partner)
A
You're
the
data
that's
going
to
be
in
this
application
and
that's
what
we
help
them
do
also
if
there
is
a
breach,
if
you're
using
our
solution,
which
is
a
data
at
rest,
encryption
solution,
we're
able
to
mitigate
the
loss.
If
there
is
a
compromise,
all
the
attackers
got
is
a
bunch
of
encrypted
data
and
there's
no
way
that
they
can
get
into
it.
A
So
we're
able
to
help,
eliminate
and
manage
key
and
object
sprawl,
which
is
another
big
problem
we're
hearing
about
from
our
customers.
We
get
whether
it's
encrypting
laptop
information
and
certificates
or
ssl
certs
for
your
web
servers
as
well
as
encryption
keys
and
everything
we
do.
We
try
to
follow
best
practices
and
we
have
multi-factor
authentication
built
into
our
key
manager
solution.
A
A
They
various
treatments,
ER
visits,
all
kinds
of
data
they're,
bringing
in
and
consolidating
together,
using
cassandra
and
again
they're
leveraging
our
encryption
and
key
management
to
be
able
to
protect
that
and
keep
it
inaccessible
to
unauthorized
users
and
patients,
and
things
like
that.
So
there's
a
lot
of
different
use
cases
in
various
verticals
in
the
industry.
For
us
to
do
this.
So
to
sum
up:
yg
Zhang!
Well,
first
of
all,
right
now
we
are
the
first
and
only
security
solution,
partnered
with
datastax.
A
It's
something
we're
really
proud
of,
and
even
with
the
data
stack
security,
the
most
recent
release
where
they
have
their
encryption
in
there
datastax
will
even
tell
you
to
have
a
fully
compliant
and
really
secure
solution
with
it.
With
this,
you
need
to
combine
that
with
Kazan
with
our
encryption
and
key
management.
Our
engineering
team,
where
they're
all
Linux
specialists,
have
been
an
open
source
for
a
long
time.
A
We
maintain
a
couple
guys
on
our
team,
maintain
open
source
projects
outside
of
their
work
at
Kazan
and
are
very
active
participants,
contributors
and
users
to
the
open
source
world
you're
able
to
encrypt
at
different
levels.
We
can
encrypt
individual
nodes
and
images,
also
file
level,
encryption
or
block
level
encryption
depending
on
what
the
business
require.
It's
are
also
we
work
well
in
very
elastic
environments.
If
you're,
spinning
up
and
bringing
down
servers
there,
the
universal
key
and
certificate
management.
This
trusty
aspect
that
I
talked
to
you
about
on
this
key
manager
solution.
A
It's
we've
got
patent
pending
for
that
trustee
process,
and
all
of
that
is
in
the
works.
Now,
we're
really
really
proud
were
the
only
people
doing
that
right
now
that
we
know
of
we
were
built
from
the
ground
up
for
the
cloud,
so
it's
very
easy
in
an
Amazon
environment
or
Rackspace
or
wherever
you
may
be
putting
your
in
your
infrastructure,
we
can
spin
up
down.
We
really
don't
care
what
that
underlying
infrastructure
is,
and
it's
it's
all
a
software
based
solution,
so
even
for
the
key
manager
very
easy
to
deploy.