D’Amo BA-SCP is an API-type DB security solution that uses the API installed in the application server to encrypt data and then sends queries to the DBMS. It minimizes the encryption/decryption load upon the DBMS and offers superior compatibility with various OSs and DBMSs.
Safer Encryption Algorithm
Uses the self-developed encryption module certified by the National Intelligence Service(CIS-CC) Certified by the Federal Information Processing Standards (AES, TDES) Supports all domestic and international standard algorithms (SEED, ARIA, AES, TDES, SHA, BLOWFISH, etc.) D’Amo SCP Agent provides various interface modules according to the language used to implement the application Provides powerful compatibility by using an identical encryption engine for each module, of which the interface is different from the others.
Authentication and encryption key management using additional systems
D’Amo SG-KMS and D’Amo SCP Agent execute the authentication processes by using the mutual authentication protocol and share the encryption key. D’Amo SCP Agent saves the shared encryption key in the cache memory to increase the processing speed and system efficiency.
DBMS Load Balancing
As encryption/decryption is performed at the application level, the load on the DBMS server for encryption is balanced by the application.
Supports indexing and selective encryption of the index column
Keeps the existing Index Search after encrypting the index column No changes of application with encryption Supports index search of the encrypted column (match search, range search) by using partial encryption
Supports batch encryption of large data
Batch encryption of large data means that the DBMS exports the data as a file format and then encrypts the file to save in the DBMS The speed is very fast because batch encryption is not processed by the DBMS but by the
application Load caused by batch encryption on the DBMS is lown
Provides functions and libraries based on various programming languages for more convenient development Provides API functions to apply products with the least modification.
Guarantees excellent performance and stability in network sections
No additional load is placed on the existing DBMS because encryption/decryption is performed in an additional application server, not in the DBMS Guarantees stability by transmitting encrypted data between the application and the DBMS
Provides developer convenience with various libraries
Provides various functions for data encryption/decryption service and various API libraries including C, JAVA, PHP, and ASP, maximizing convenient implementation of the product in various developer environments
Powerful key management and administrator authentication
Dual encryption of encryption/decryption key by using the Hybrid encryption method Supports powerful key management with additional H/W (when D’Amo KeyManager is applied)
Supports various algorithms and environments (flexibility and scalability)
Supports Korean and international standard encryption algorithms (RSA, 3DES, AES, SEED, ARIA, SHA, etc.)
Supports all application development environments (C, Java, etc.) and all types of DBMSs (Oracle, Altibase, MSSQL, DB2. etc.)
Secured data interworking between heterogeneous DBMSs even with different data encryption keys
Installing D’Amo SCP Agent allows integration of the management target DBMS to the existing encryption management system
D’Amo SCP Agent (for the application server)API encryption module software that is installed on the application server to encrypt/decrypt data on the application
To establish an encryption system, the API-type D’Amo SCP Agent is installed in the application server to encrypt/decrypt the DB. When configured, the D’Amo KeyManager manages the encryption/decryption keys and policies.
D’Amo SG-KMS (Key Management Server)
- Manages all encryption/decryption keys and policies
- Processes the requests related to the key and saves the logs
- Web-based GUI console