Overview
Baffle is the only security platform that cryptographically protects the data as it's created, used, and shared across cloud-native data stores.
Baffle Manager is a web-based orchestration tool that enables the configuration, management and reporting of Baffle Shields. Baffle Manager is free.
Baffle Shields are reverse proxies placed in-line between your applications and databases. Data going into the databases is encrypted or tokenized and data coming out can be decrypted and/or masked according to role based access controls (RBAC). The proxies intercept SQL queries from the application and perform the key management, encryption/decryption, and RBAC masking in near real-time. This means no or minimal code changes to your applications for fast and easy implementation. The proxy architecture is modular, allowing you to scale with your performance and availability needs.
Baffle Shield offerings in the AWS Marketplace include: -Baffle Shield for Postgres Static Data Masking to Lower Environments is for duplicating but anonymizing data from production into lower (pre-production) environments while maintaining the original data format and length. -Baffle Shield for Postgres Dynamic Data Masking encrypts the database and then enables full or partial masking based on role-based access control (RBAC). -Baffle Shield for Postgres Multi-tenant Data Security performs record-level encryption using a different key for every tenant. This allows your SaaS solution to scale while providing data isolation and security.
Baffle enables you to easily and safely unlock the value of your data, meet compliance and security controls, and eliminate the impact of data breaches even on infrastructure you don't control.
Highlights
- Baffle's proxy architecture enables no-code implementation of encryption, tokenization, and masking. The easiest way to anonymize or obfuscate data throughout your data pipeline.
- Tokenization with format preserving encryption allows the ciphertext to be the same data type and length of the plaintext. Avoid the need for a separate look-up vault and the additional infrastructure, management, and compliance needs that brings.
- Meet compliance and security needs related to PCI-DSS, HIPAA, GDPR, CCPA and more. Finally eliminate the impacts of data breaches.
Details
Typical total price
$0.046/hour
Pricing
Instance type | Product cost/hour | EC2 cost/hour | Total/hour |
---|---|---|---|
t2.micro AWS Free Tier | $0.00 | $0.012 | $0.012 |
t2.small | $0.00 | $0.023 | $0.023 |
t2.medium Recommended | $0.00 | $0.046 | $0.046 |
t2.large | $0.00 | $0.093 | $0.093 |
t2.xlarge | $0.00 | $0.186 | $0.186 |
t2.2xlarge | $0.00 | $0.371 | $0.371 |
m3.medium | $0.00 | $0.067 | $0.067 |
m3.large | $0.00 | $0.133 | $0.133 |
m3.xlarge | $0.00 | $0.266 | $0.266 |
m3.2xlarge | $0.00 | $0.532 | $0.532 |
Additional AWS infrastructure costs
Type | Cost |
---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
Baffle Manager is free.
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Baffle Manager is an orchestration tool for the configuration, management, and reporting of Baffle Shields.
Additional details
Usage instructions
Launch the Baffle Manager AMI on the EC2 or your choice.
Ensure that your compuuter can access port 443 of the EC2
Open a browser and navigate to the EC2 IP address
Configure Baffle Manager as per the instructions
Setup a keystore
Setup a database
Create an application and note the SyncID
Use the SyncID when launchinga Baffle Shield so it can connect to Baffle Manager
Resources
Vendor resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.