Database Encryption

IT Security strategies are now moving to put the protection closer to the actual data you are trying to protect. Databases are an important component of any information network and protection at the database level can be the most effective at ensuring the data is not stolen, or misused. Database encryption has also come to the forefront with the need for compliance to standards such as PCI.
With database encryption products, you have the flexibility to encrypt data at the column-level within databases, at the application layer, and during batch-driven data transformation and transaction processes.  DB encryption helps avoid the risks of “privileged-user” access by allowing for the separation of administrative duties. Centralized key and policy management simplifies the enforcement of data encryption in virtually any number of databases across heterogeneous environments.
Tokenization is now a method that is being used along with Database Encryption to help organizations reduce the scope implications of PCI.  Tokenization manages the encryption keys used to store confidential credit card data or personal information and sends back-end processes / systems / applications a “token” to be sent to complete the transaction.  This way NO credit card information is being processed or transmitted, simply a token.

A number of Security Technology vendors provide database encryption solutions: