Two most common data protection scenarios in the enterprise computing are:

1. Protecting information in a relational database
2. Protecting information contained in files

Protecting information in a relational database

In this scenario we suggest you to use a Tricryption Engine to perform all cryptographic functionality, including key generation, key retrieval, key encryption, link encryption and data encryption.

Multiple Tricryption Engines may be used to assure fault tolerance. The Key Database will store encrypted keys and Key IDs, as well as user information and trusted component information. In addition, an application server will contain various client applications and a Tricryption Agent, which will submit cryptographic transaction requests from the application server to a Tricryption Engine. Finally, a client-side database server will house a target database, which stores all unencrypted data, encrypted data and Hidden Links.

In this scenario we suggest you to use a Tricryption Engine to perform all cryptographic key management functions, including key generation, key retrieval, key encryption and link encryption. The Key Database will store encrypted keys, while encrypted files and Hidden Links will be stored on client machines. A Remote Engine can be installed on each client machine. The Remote Engine will transmits cryptographic key requests from the client machine to the Tricryption Engine, and will use the keys to encrypt and decrypt data stored on the client machine. This approach off-loads data encryption and decryption from the Tricryption Engine and also reduces network traffic.