Automatic Tokenization for the IBM i (AS/400, iSeries) Platform with Alliance Token Manager

Share Article

Major update to Alliance Token Manager allows IBM i customers to automatically tokenize data without modifying existing applications or databases and meet compliance requirements like PCI DSS.

In addition to protecting sensitive information internally this new automatic tokenization feature can be used to send data to outside service providers. Even if they experience a data breach, the original sensitive information can never be recovered.

Townsend Security today announced a new automatic tokenization feature of its Alliance Token Manager solution for the IBM i platform. By tokenizing sensitive data, businesses can reduce the scope of cardholder data environments as defined by the PCI Security Standards Council by replacing the Primary Account Number (PAN) with a token.

Alliance Token Manager now makes it easy for IBM i system administrators to set up the tokenization of data without performing any developer tasks. A file is simply copied to a designated library, the fields or columns are selected for tokenization, and Automatic Tokenization replaces the sensitive data with replacement values. Over 20 different fields types are supported including credit card, date, zip code, social security number, address, and many others. The referential integrity of the DB2 database is maintained and data is usable by developers and users. Simple commands allow for the replication and automation of the tokenization process.

Enterprise IBM i customers have struggled to move data from production to non-production environments such as development and user test systems without exposing sensitive data such as credit card numbers, patient information, and other regulated data. This enhancement to the Townsend Security tokenization solution will make the migration of data easier and safer by automatically tokenizing sensitive data rendering it unusable to cyber criminals.

“We’ve been hearing from IBM i customers about the need to automatically cleanse production data for some time. It was pretty straight-forward to leverage the existing tokenization technology in Alliance Token Manager to create a solution. Our development team was able to create a solution that does not require development resources to implement. This new feature creates non-recoverable tokens as this is defined by PCI tokenization guidance,” said Patrick Townsend, CEO of Townsend Security. “For example, no PAN are stored when creating the tokens. This means that the data moved to development and user acceptance platforms can never be reversed to expose credit card numbers. In addition to protecting sensitive information internally this new automatic tokenization feature can be used to send data to outside service providers. Even if they experience a data breach, the original sensitive information can never be recovered.”

Existing Alliance Token Manager customers can upgrade to receive the automatic tokenization support at no additional charge. New customers can choose between perpetual or subscription pricing. Alliance Token Manager is licensed on a per-logical partition (LPAR) basis with discounts for multiple licenses. Townsend Security partners are enabled to resell the Alliance Token Manager solution.

###

About Townsend Security
Townsend Security creates data privacy solutions that help organizations meet evolving compliance requirements and mitigate the risk of data breaches and cyber-attacks. Companies worldwide trust Townsend Security’s NIST and FIPS 140-2 compliant solutions to meet the encryption and key management requirements in PCI DSS, HIPAA/HITECH, FISMA, GLBA/FFIEC, SOX, and other regulatory compliance requirements. Learn more at http://www.townsendsecurity.com.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Luke Probasco
@townsendsecure
Follow >
Townsend Security
Like >
Follow us on
Visit website