kinamik
TRANSCRIPT
KinamikReal-Time Data Integrity
Assurance
Mark Searle, CEO
- 2 -
Kinamik Offering
We assure data integrity and authenticity in real time at the granular detail of individual records
Enabling our users to: Detect, demonstrate and deter data manipulation Meet regulatory requirements Assure legal evidential weight of data
- 3 -
Feb 2010: Breach at one Spain’s top 3 banks
“we log, record and retain every action in the account”
BUT: “these logs can be altered or
changed by anyone with sysadmin access”
The Problem: Banking
- 4 -
Adoption slowed by compliance & assurance concerns
Especially in highly regulated markets
The Problem: Cloud Computing
“companies … should make certain they choose cloud providers … able to ensure the authenticity and reliability of the data...” (New York Law Journal, 2009)
- 5 -
Chapter 11, Example 5: “Erasing an Audit Trail”
The Problem: Web Applications
- 6 -
“I think tamper-resistant audits will become commonplace … good news, I stumbled onto a software company called
Kinamik … dedicating [itself] to the creation of a tamper-resistant audit log!”
The Kinamik Solution: Immutable Audit Data
Real-time capture: no window of vulnerability Chaining: secure each record and its sequence Reporting: web-based or through BI tools
Jeff JonasIBM Distinguished Engineer and Chief Scientist, Entity Analytic Solutions, IBM Software Group
- 7 -
Alternative Approaches
“There are two distinct advantages to [Kinamik’s] method of log file security ... mathematical certainty that the contents have not been altered, … and chaining the data stream provides an immutable sequence of events.” - Securosis
Approaches:
Capabilities:
Digital Signatur
eFile
HashingTime
Stamping
Write Once Read Many
Integrity Assurance ✔ ✔ ✔ ✔Real-Time
Application ✔Granular
Detail ✔ ✔(some)Event
Sequencing ✔ ✔Cost-
Effective Scaling
✔ ✔
- 8 -
Perpetual licenses (as requested by prospects) Low entry price: tiered on data volume SaaS-ready for appropriate markets: now running trial on AWS
Immediate Global Channel Development
Going to Market: “Old School” Business Model
- 9 -
- 10 -
Accessing Major Markets through Partners
Regula
tory
Compli
ance
Government
Agencies
Telecoms, ISPs
& Utilities
Litiga
tion S
uppo
rt
Non-re
pudia
tion
Fraud D
etecti
on
& Dete
rrenc
e
2010-11
2011
Financial Svcs. &
Healthcare
2011
2011
- 11 -
TeamMark Searle, CEO COO CyberGold (IPO); COO iPIX (IPO); Founder &
CEO SenSage (private); Founder & CEO Log Savvy (private) Harvard MBA; Princeton AB cum laude
Carlos Saona, VP Technology
Ph. D. Comp. Sci.; former Assoc. Professor of Comp. Sci.
Carles Ferrer, Director Security Practice Leader, Nauta Capital; Director: Scytl, Agnitio, Abiquo
Al Sisto, Advisor COO RSA Data Security; Chairman & CEO Phoenix Tech.; Chairman Digital Signal Corp.
André Marquis, Advisor CEO Amplyx (private); CMO Log Savvy (private); COO Chorus (Eli Lilly); EVP & CTO iPIX (IPO); Founder & CMO Accept.com (AMZN); Mktg. Dir. CyberGold (IPO) UC Berkeley MBA
Development Team Avg. 10 yrs. experience, each w/multiple product ships
Business Team Avg. 9 yrs. experience: Deloitte, Accenture, Fidelity, NTRglobal, Tango/04, …
- 12 -
Summary
We have: a solid base Venture backing from Nauta Capital New CEO in Sept. 2009 for commercialization Founded in Barcelona, now migrating to the US Proven & differentiated technology w/issued patent & more pending
We want: US partners Seeking $3-5 Million financing round Distribution and sales US team development