ServiceNow Edge Encryption has been moved to end-of-renewal status, with customers being directed to the in-cloud “Platform Encryption” offering, which bundles Cloud Encryption key management and Field Encryption Enterprise. This transition eliminates the customer-managed edge encryption proxy, which previously enabled organizations to encrypt data prior to transmission to ServiceNow and maintain separation between their encryption environment and the ServiceNow platform. For regulated industries, this change introduces additional risks, including reduced data sovereignty, diminished customer control, and potential non-compliance with regulatory requirements.

請閱讀資料表

Migrate from ServiceNow Edge Encryption

Maintain control
Ensure enterprise data sovereignty and local key management by retaining all regulated information within your own environment.
Reduce complexity
Enable interoperability of encrypted data between multiple SaaS applications.
Achieve compliance
Satisfy regulatory requirements such as GDPR, PCI-DSS, DORA, NIS2, and more.

Compare OpenText DPP Sentry to ServiceNow Platform Encryption

滑動查看更多內容	OpenText DPP Sentry	Cloud-based encryption	Why OpenText DPP Sentry is better
Feature/capability
Primary function and architecture	已檢查 Acts as a "data privacy broker" that intercepts and protects data across various protocols (HTTP/S, JDBC, ODBC, SQL, SMTP, REST, SOAP) before it reaches an application or data store. It is an external, interception solution.	X 標記 Provides native, built-in encryption within the SaaS application's cloud, including encryption at rest and/or field-level encryption for data stored in its database. It is an internal, platform-centric solution.	Superior architectural control. OpenText™ DPP Sentry protects data regardless of its destination, extending security to any compatible application—not just the SaaS application.
Encryption boundaries	已檢查 End-to-end encryption ensures data is encrypted before it leaves to the target SaaS application, meaning the data is protected during the entire transit journey.	X 標記 Protection executes inside the provider boundary. Data is TLS-protected in transit, and plaintext exists within the platform during processing.	OpenText DPP Sentry closes the gap before the cloud. It ensures data is never exposed in plaintext on the wire or within the source environment.
Encryption methods	已檢查 Uses advanced, data-centric methods including format-preserving encryption (FPE), format-preserving hash (FPH), and secure stateless tokenization (SST).	X 標記 Uses standard algorithms like AES-256 for database encryption and field-level protection.	OpenText DPP Sentry's encryption methods can ensure that data remains consistently protected whether it is at rest, in motion, or in use.
Key management and custody	已檢查 Supports stateless key management, which eliminates the operational complexity of managing keys and allows for high scaling. The customer retains authority and control over their own encryption keys.	X 標記 Offers both platform-managed keys and customer-controlled keys (BYOK/CMK). However, key management introduces significant operational challenges, including complex governance. Additionally, keys must be stored and shared with SaaS application provider.	OpenText DPP Sentry provides simpler, more scalable key management. It avoids the operational overhead and risks associated with the intricate key management required by the SaaS application. The customer retains sovereignty over their data and its security.
Platform standardization	已檢查 Enterprise-wide. Can protect data across hybrid multi-cloud environments, legacy and COTS database applications, and web and SaaS platforms (e.g., Salesforce, Jira).	X 標記 Limited to the SaaS application platform. Only protects data that resides within or passes through a SaaS application instance.	OpenText DPP Sentry offers a single, unified policy. It protects sensitive data across your IT ecosystem, not just one silo.

Replace ServiceNow Edge Encryption with customer-managed solution

License

Software license with unlimited protection service for ServiceNow.
Template

Out-of-the-box ServiceNow configuration supporting field and file encryption.
實施

OpenText DPP Sentry deployment and configuration. Functional testing, UAT support, and production cutover with runbook.
Data migration

Migration of historical data by decrypting ServiceNow Edge encrypted backlog and encrypting it using OpenText DPP Sentry.
訓練

Knowledge transfer, documentation, and handover.

Top reasons to choose OpenText DPP Sentry

Zero-impact
整合
Unlike traditional encryption that breaks database schemas, OpenText DPP Sentry maintains the original data format (e.g., a 16-digit credit card number remains a 16-digit number), ensuring ServiceNow scripts and workflows continue to function perfectly.
Regulatory
compliance and sovereignty
Addresses GDPR and Schrems II challenges by ensuring that cleartext personal data is never stored or processed in non-compliant jurisdictions.
Stateless
scalability
Eliminates the need for a key management system, "token vault" or database. This reduces latency, removes a single point of failure, and lowers the total cost of ownership.
Granular
"need-to-know" access
Decryption happens dynamically at the gateway. For example, you can define policies where an HR manager sees clear text, but a system administrator only sees masked or encrypted data.
統一
protection platform
A solution that supports encryption for other COTS, SaaS, and in-house enterprise applications.

益處

Simplify and accelerate the adoption of strong data-centric security in cloud-based services and on-premises applications.

聯絡我們

Accelerate data protection time-to-value

Reduce the effort required to protect data in applications, and reduce the risk of data exposure with flexible deployment of data security across hybrid IT.
Reduce risk of data exposure

Flexibility to choose format-preserving encryption, format-preserving hash, and stateless tokenization.
Help achieve and maintain data privacy compliance with ease

Enable regulatory compliance for GDPR, PCI-DSS, DORA, and NIS2.
Ensure sensitive data detection and interoperability

Enables interoperability of encrypted data across SaaS platforms supporting a variety of content formats and protocols.