NextLabs Product Update – November 2022

Summary for Data Access Enforcer (DAE) line of products

Powered by NextLabs’ Dynamic Authorization policy engine, Data Access Enforcer (DAE) – NextLabs’ Data Access Security solution, allows companies to dynamically enforce policies independent of application, UI, API, Microservice, batch job, and application function; regardless of how the data is being accessed.

NextLabs recently expanded its DAE product line to provide out of the box integrations with more enterprise platforms than ever before.  The DAE product line now includes the following products:

  • DAE for SAP ERP
  • DAE for SAP ERP Advanced Edition
  • DAE for SAP HANA
  • DAE for Oracle and AWS RDS for Oracle
  • DAE for Microsoft SQL Server, Azure SQL, AWS RDS for SQL Server, and Google Cloud SQL for SQL Server
  • DAE for BigQuery
  • DAE for Windows
  • DAE for Linux

In addition to expanding the product line to provide support for more platforms, NextLabs has added additional functionality, including support for masking data at rest using Format Preserving Encryption (FPE).  Data can now be encrypted where it is stored in the database using either a built-in FPE library included with DAE, or through out of the box integrations with 3rd party encryption technologies such as Micro Focus Voltage Secure Data.  With the FPE data masking, DAE allows organizations to:

  • Encrypt data at rest, preventing unauthorized direct access of sensitive data and complying with relevant regulations
  • Dynamically unmask data at the time of data access request for authorized users to show the original data values
  • Mask data using encryption while preserving the format, maintaining integrations that depend on the format and preventing unauthorized users from knowing that data has been masked.

In addition to the support for Format Preserving Encryption for data at rest, recent enhancements and new functionalities to DAE include:

  • Awareness of the Primary and Foreign Key relationship 
  • More rapid deployment with simplified configuration and improved out-of-the-box integrations 
  • Support for containerization to accelerate deployment and reduce maintenance 
  • Row-level enforcement of insert/delete/update/select commands based on policy 
  • Policy-based enforcement of table creation or deletion 
  • Configurable user messages when policy enforcement restricts access to sensitive data 
  • Incorporation of user geolocation attributes in data access policies 
  • Certification of support for AWS RDS, Google Cloud SQL, and Azure SQL. 

Enhancements for Specific Versions include:

DAE for Oracle and AWS RDS for Oracle:

  • Row level enforcement on insert/delete/update/query based on user attribute
  • Enforcement on table creating/deleting.
  • Dynamic data masking
  • Predicate condition
  • Adding support for Oracle 21C.
  • Support Kubernetes Container deployment

DAE for SAP HANA:

  • Row level enforcement on insert/delete/update/query based on user attribute
  • Enforcement on table creating/deleting.
  • Dynamic data masking
  • Predicate condition
  • Adding support for SAP HANA 2.0.

DAE for Microsoft SQL Server, Azure SQL, AWS RDS for SQL Server, and Google Cloud SQL for SQL Server:

  • Row level enforcement on insert/delete/update/query based on user attribute
  • Enforcement on table creating/deleting.
  • Dynamic data masking
  • Predicate condition
  • Adding support for MS SQL Server 2019 Enterprise Edition