Amazon EC2 DLP & Data Classification Guide | Nightfall Developer Platform

Guide to Data Protection, Classification, and DLP for Amazon EC2

Discover, classify, and protect sensitive data in Amazon EC2 with Nightfall’s APIs. Improve security & compliance with cloud-native data protection.
The Challenge

Data Sprawl on Amazon EC2

  • Amazon EC2 is a web service that provides compute capacity in the cloud. Sensitive data like PII, credentials & secrets sprawl into Amazon EC2 at an alarming rate. It’s nearly impossible to know what types of data are in Amazon EC2 through manual efforts.
  • Amazon EC2 doesn’t have enterprise-grade data protection, DLP, or data classification capabilities built-in.
  • Current data protection solutions are built for devices and networks, not cloud services like Amazon EC2, so they are hard to implement. They aren’t flexible, accurate, or developer-friendly because they are primarily based on regular expressions and simple heuristics.
  • This can lead to productivity loss, risk of data breach, and compliance problems.
+
The Solution

Solving Data Sprawl on Amazon EC2 with Nightfall

Nightfall is a fully managed data security and data privacy service that uses machine learning to discover, classify, and protect your sensitive data. The Nightfall Developer Platform is a set of REST APIs that you can use to inspect data wherever it lives, on or off the cloud. With the Developer Platform, you'll be able to scan data in Amazon EC2 via their APIs.
  • Programmatically get structured results from Nightfall’s deep learning-based detectors for 150+ types of sensitive data like credit card numbers, API keys, and more. Nightfall maintains a growing list of sensitive data types that include common personally identifiable information (PII) and other sensitive data types as defined by data privacy regulations, such as GDPR, PCI-DSS, and HIPAA.
  • Deep-learning based detectors go well beyond regexes, rules, and search strings so you can make sense of your data without the alert fatigue. These detection techniques continually improve over time.
  • Customizable detection engine to tailor detectors and detection rules to your needs.
  • Custom-defined data types using regular expressions or word lists, to discover proprietary or unique sensitive data specific to your use cases.
  • Scan over 100+ file types, MIME-types and perform machine learning based optical character recognition (OCR) to extract text.
  • Nightfall Console enables you to create, save, and manage detection rules easily and flexibly in the UI to reference in code.
  • Integration example & starter code for integrating directly with Amazon EC2 so you don’t need to write the integration glue from scratch.
How It Works

Using Nightfall & Amazon EC2 APIs

  • Create an API key. Integrate with just a few lines of code.
  • Configure a detection rule. Set up detection rules as code or manage them in the Nightfall Console. Use our Playground to test detection rules easily.
  • Make your first API call. Scan text payloads or files with 150+ detectors trained via machine learning.
  • Read our integration example & starter code for Amazon EC2. We make integration quick and painless with clear and comprehensive documentation.
REQUEST
curl --url https://api.nightfall.ai/v2/scan \
--request POST \
--header 'content-type: application/json' \
--header 'x-api-key: $NIGHTFALL_API_KEY' \
--data '{
    "payload": [
      "4916-6734-7572-5015 is my credit card number"
    ],
    "config": {
      "conditionSet": {
        "conditions": [{
          "minNumFindings": 1,
          "minConfidence": "LIKELY",
          "detector": {
            "displayName": "Credit Card Number",
            "detectorType": "NIGHTFALL_DETECTOR",
            "nightfallDetector": "CREDIT_CARD_NUMBER"
          }
        }]
      }
    }
  }'
RESPONSE
[
    [
        {
            "fragment": "4916-6734-7572-5015",
            "detectorName": "Credit Card Number",
           "confidence": "VERY_LIKELY",
            "location": {
                "byteRange": {
                    "start": 0,
                    "end": 19
                },
                "unicodeRange": {
                    "start": 0,
                    "end": 19
                }
            }
        }
    ]
]

Case Study

“The Nightfall Developer Platform allows us to scan for certain patterns of information, like social security numbers or credit cards. We can ensure that our internal communication stays as work-appropriate as possible.”

Tim Alman, Enterprise Process Solutions Manager
Use case: DLP & content moderation
Employees: 12,000+
Industry: Retail & Ecommerce

Get Started

The Developer Platform is currently in exclusive beta. Request access to the Nightfall Developer Playground for API docs, starter code, tutorials, examples, and community. Or, schedule a meeting to speak with our product team about your use case and see a demo.