Proving the Business Case for the Internet of Things

HP buys Voltage Security to improve big data security

Steve Rogerson
February 12, 2015
Hewlett-Packard has bought California company Voltage Security for an undisclosed sum to strengthen its position in security for big data environments as the IoT grows.
Voltage’s data-centric encryption and tokenisation technology will complement Atalla, HP’s information security and encryption business, helping users protect sensitive information whether it lives in the cloud, across mobile platforms, in big data environments, or within legacy computer systems for critical regulatory compliance.
“As our IT systems continue to evolve and grow more complex, so do our security needs,” said Art Gilliland, HP’s senior vice president and general manager of enterprise security products. “Today, sensitive information is everywhere – in cloud and big data environments, on mobile platforms, with employees scattered around the world, and, as the internet of things market grows, on even more devices than we could have imagined.”
He said this meant “a new paradigm in enterprise security” that required organisations to protect not just their systems, but the data themselves. Customers, he said, needed a way to protect sensitive information from the moment it’s created throughout its entire lifecycle.
“That’s why I’m excited to announce that HP has signed a definitive agreement to acquire Voltage Security, a leading data security provider,” he said. “This announcement aligns with HP’s focus on end-to-end protection of the data themselves, helping enterprises neutralise the impact of a breach and proactively combat new security threats.”
HP works across many industries, including financial services, healthcare, retail and the public sector. Last year, it added Atalla offerings to help organisations take a more proactive defence against adversaries.
Voltage’s data-centric protection products will join the Atalla portfolio, expanding HP’s offerings in data classification, payments security, encryption, tokenisation and enterprise key management. With Voltage, HP plans to offer data protection capabilities built to close the gaps that exist in traditional encryption and tokenisation approaches. This is for enterprises that interact with financial payments systems, manage workloads in the cloud, or whose sensitive data flow into Hadoop for analytics – making them attractive targets for cyber-attackers.
“Our HP Atalla business helped invent the security you take for granted in banking, and today protects 70 per cent of US payment card transactions,” said Gilliland. “Voltage enables end-to-end protection of payments systems, from card swipe to back-end tokenisation, serving six of the largest payment processors in the USA today.”
Voltage’s products let enterprises use protected data in applications without having to re-architect their applications or adopt fragmented frameworks. This capability extends from the data centre to cloud and Hadoop environments, all under one framework. Its identity-based encryption technology allows for a more simple enterprise email security system on premise and on mobile devices.
HP’s fifth annual Cost of Cyber Crime Study found that the average annual cost of cyber crime for a US organisation was $12.7m. This cost has nearly doubled since the study was initiated. The average time to detect a cyber attack is now 170 days, and there has been a 176 per cent increase in the number of cyber attacks since 2010, with organisations experiencing an average of 138 successful attacks per week.
“With so much at stake, data security is clearly not just an IT issue, but a business imperative and a global security priority,” said Gilliland. “With the addition of Voltage, HP will continue to serve as a highly trusted security platform across industries, protecting the most sensitive information of organisations transitioning to the new style of IT.”
The transaction is expected to close in the first half of fiscal 2015, subject to customary closing conditions.