25.11.2021 – 12:05
Hamburg / Berlin (ots)
It is a double breakthrough for the enterprise archive solutions market: With the certification of the Deepshore Cloud Native Archive After three years of development, a blockchain application for GoBD-1 and DSGVO2-compliant use is certified for the first time. As a result, it is now possible for the first time to act audit-proof (compliant) on any virtual and cloud resources according to European standards – regardless of where in the world and by whom these resources are hosted. Because through the combined use of blockchain authentication and stream encryption, the required level of protection for original data and compliance with deletion obligations can be mapped autonomously.
So far, companies that want to move archives to the cloud have faced serious legal problems. Many international cloud providers, especially the market-dominating players from the USA and China, cannot or do not want to meet the requirements of the GoBD and GDPR required in Germany. Alternatives in the European legal area, on the other hand, are rare: The European mega cloud project Gaia-X is still in the development phase and the majority of the alternative offerings are technologically not native cloud solutions, but only managed services offerings with limited distributability of Data.
The Hamburg technology specialist Deepshore, which is itself one of the drivers of the Gaia-X initiative, has brought a radically different approach to market maturity with the development of its Cloud Native Archive. Blockchain technology, known to many laypeople from the discussion about crypto currencies, plays the decisive role here. With the testing of the solution according to the IDW PS 880 test standard of the Institute of Auditors, companies receive a legally secure framework for the administration and archiving of sensitive and company-critical information and documents in practice.
The research work on the development of the Cloud Native Archive was supported by the Zuse Institute Berlin, an interdisciplinary research institute for applied mathematics and data-intensive high-performance computing, as well as by companies from the economy. The result is a revolutionary distributed Compliant Storage (audit-proof storage) that is not delivered as an appliance, but can run as a software service on any IT infrastructure. This means that the system can play an important role in digital transformation because it integrates both virtual architectures (on- and off-premises) as well as classic on-premises environments and hybrid system landscapes.
The security against unwanted changes and manipulation required for Compliant Storage is guaranteed by the blockchain technology used via cryptographic processes, unalterable time stamps and seamless transaction tracking. In combination with the internal storage class concept and the integrated encryption, an extremely high level of protection for company data is achieved, which has now been confirmed in accordance with IDW PS 880. That’s why deepshore Cloud Native Archive can even be used in public cloud infrastructures such as Amazon Web Services, Google Cloud Platform, Microsoft Azure, IBM Cloud or Aliyun (Alibaba Cloud) in a legally secure manner.
That Cloud Native Archive can be installed and used within a few minutes due to its service architecture. It only uses open source components that are orchestrated via the access service developed by Deepshore. Outwardly, the system behaves like an exposed storage end point and can thus also be addressed directly by classic ECM applications such as IBM FileNet P8 and OpenText. So that’s that Cloud Native Archive at the same time a clear alternative to Compliant storages such as NetApp SnapLock or Hitachi Content Platform (HCP).
Practical use of the deepshore began even before the global certification Cloud Native Archive for customers from the enterprise segment, where it is used, among other things, to outsource data from SAP HANA infrastructures. For these applications, too, compliance testing was carried out by auditors – here in each case at the level of the specific, individual application form.
1) GoBD: “Principles for the proper management and storage of books, records and documents in electronic form as well as for data access”; Principles issued by the Federal Ministry of Finance (BMF) that regulate the requirements for IT-supported bookkeeping
2) GDPR: General Data Protection Regulation, an EU regulation with which the rules for the processing of personal data by most of the responsible parties, both private and public, are standardized across the EU.
3) IDW PS 880: The testing and validation of software products is standardized by the Institut der Wirtschaftsprüfer (IDW) using a testing standard (PS).
Deepshore GmbH, based in Hamburg, Berlin and Heidelberg, sees itself as a brain pool and development center for new concepts and solutions in the future segment of distributed networks and applications. With this horizon we pave the way for compliance applications in virtual infrastructures such as the cloud. We use pioneering concepts to achieve practical standards and applications, which we develop into high-end business solutions together with our strategic partner nextevolution. Deepshore and the Konrad-Zuse-Zentrum für Informationstechnik Berlin (Zuse-Institut Berlin, ZIB), which is focused on applied mathematics and high-performance computing, maintain a research cooperation, the aim of which is the development of completely new IT infrastructures, in which for the first time blockchain and Big data technologies are brought together. The cooperation is funded by the federal government and is intended to change the future of IT in large and small companies over the long term. Deepshore is a member of the European cloud initiative GAIA-X. More under www.deepshore.de
Press office Deepshore GmbH
c / o Jens Schrader
sense:ability communications GmbH
Phone +49 30 24088579
Email: [email protected]
Original content from: Deepshore GmbH, transmitted by news aktuell