Baffle announced new capabilities
designed to secure multi-tenant applications on Amazon Web Services (AWS). With
Baffle, AWS customers are now able to secure data in databases as well as S3
object storage with simplicity and ease by protecting each tenant within the
multi-tenant application.
Multi-tenancy
requires isolation for each tenant for both the database and the object store.
SaaS providers using AWS aren't able to provide tenant-level isolation with a
relational database service (RDS) or Aurora database while S3 object stores
potentially provide this capability through AWS Server-side Encryption for
encrypting each tenant's files in a S3 bucket, but key management is left to
the SaaS provider.
Baffle
now provides a solution for multi-tenant encryption for the relational database
service (RDS) and Aurora database instances and integrates Baffle's key
management capabilities with AWS server-side encryption to cover S3 object
stores. This eliminates the complexity of key management for multi-tenant
isolation by streamlining and automating the process, giving customers a single
key that controls all their data in AWS for the SaaS provider.
"For
AWS customers, managing data security is a significant challenge. Baffle
strives to make it easy for customers to secure the data regardless of database
configuration. Multi-tenant applications present a unique challenge requiring
separate logic to manage each tenant's key and data in the S3 object store and
the database," said Ameesh Divatia, co-founder and CEO of Baffle. "Our new
capabilities eliminate these complexities, making data security for
multi-tenant applications on AWS straightforward and efficient."
AWS
customers using Baffle can now benefit from:
- Reduced cost to
implement and manage multi-tenant security - Customers save
time and as a result, money spent on management with a single control
mechanism
- Decreased data
security risk
- Customers' data is secure and protected by Baffle's cryptographic
technology solution
- Increased
ability to customize and scale - With a simple security solution,
customers can focus on the configuration that works best rather than how
to secure the data
According
to a Baffle customer that drove this requirement, "Implementing multi-tenant
data security for our applications has been complex and takes a lot of time and
effort from our application development and security teams. With Baffle, we no
longer need to manage individual tenant keys, greatly reducing our time and
costs to provide comprehensive multi-tenant data security."