By Ulf Mattsson
Copyright Year 2022
ISBN 9781032039121
June 27, 2022 Forthcoming by CRC Press
312 Pages 331 B/W Illustrations

Book Description

Many security experts excel at working with traditional technologies but fall apart in utilizing newer data privacy techniques to balance compliance requirements and the business utility of data. This book will help readers grow out of a siloed mentality and into an enterprise risk management approach to regulatory compliance and technical roles, including technical data privacy and security issues.

The book uses practical lessons learned in applying real-life concepts and tools to help security leaders and their teams craft and implement strategies. These projects deal with a variety of use cases and data types. A common goal is to find the right balance between compliance, privacy requirements, and the business utility of data.

The book will review how new and old privacy-preserving techniques can provide practical protection for data in transit, use, and rest. We will position techniques like pseudonymization, anonymization, tokenization, homomorphic encryption, dynamic masking, and more. Topics include:

o   Trends and Evolution

o   Best Practices, Roadmap, and Vision

o   Zero Trust Architecture

o   Applications, Privacy by Design, and APIs

o   Machine Learning and Analytics

o   Secure Multi-party Computing

o   Blockchain and Data Lineage

o   Hybrid Cloud, CASB, and SASE

o   HSM, TPM, and Trusted Execution Environments

o   Internet of Things

o   Quantum Computing

o   And much more!

Ulf Mattsson leverages his decades of experience as a CTO and security expert to show how companies can achieve data compliance without sacrificing operability.”

-          Jim Ambrosini, CISSP, CRISC, Cybersecurity Consultant and Virtual CISO

Ulf Mattsson lays out not just the rationale for accountable data governance, he provides clear strategies and tactics that every business leader should know and put into practice.  As individuals, citizens and employees, we should all take heart that following his sound thinking can provide us all with a better future."

-          Richard Purcell, CEO Corporate Privacy Group & former Microsoft Chief Privacy Officer

Table of Contents


Section I. Introduction and Vision

o   Chapter1. Privacy, Risks, and Threats

o   Chapter2. Trends and Evolution

o   Chapter3. Best Practices, Roadmap, and Vision

Section II. Data Confidentiality and Integrity

o   Chapter4. Computing on Encrypted Data

o   Chapter5. Reversible Data Protection Techniques

o   Chapter6. Non-Reversible Data Protection Techniques

      Section  III. Users and Authorization

o   Chapter7. Access Control

o   Chapter8. Zero Trust Architecture

Section. IV. Applications

o   Chapter9. Applications, Privacy by Design, and APIs

o   Chapter10. Machine Learning and Analytics

o   Chapter11. Secure Multi-party Computing

o   Chapter12. International Unicode Data

o   Chapter13. Blockchain and Data Lineage

Section V. Platforms

o   Chapter14. Hybrid Cloud, CASB, and SASE

o   Chapter15. HSM, TPM, and Trusted Execution Environments

o   Chapter16. Internet of Things

o   Chapter17. Quantum Computing



o   Appendix A. Standards and Regulations

o   Appendix B. Governance, Guidance, and Frameworks

o   Appendix C. Discovery and Search

o   Appendix D. Digital Commerce, Gamification, and A.I.

o   Appendix E. Innovation and Products

o   Appendix F. Glossary



Ulf Mattsson is a recognized information security and data privacy expert with a strong track record of more than two decades implementing cost-effective data security and privacy controls for global Fortune 500 institutions, including Citigroup, Goldman Sachs, GE Capital, BNY Mellon, AIG, Visa USA, Mastercard Worldwide, American Express, The Coca Cola Company, Wal-Mart, BestBuy, KOHL’s, Microsoft, IBM, Informix, Sybase, Teradata, and RSA Security. He is currently the Chief Security Strategist and earlier the Chief Technology Officer at Protegrity, a data security company he co-founded after working 20 years at IBM in software development. Ulf is an inventor of more than 70 issued US patents in data privacy and security. Ulf is active in the information security industry as a contributor to the development of data privacy and security standards in the Payment Card Industry Data Security Standard (PCI DSS) and American National Standards Institute (ANSI) X9 for financial industry. He is on the advisory board of directors at PACE University, NY, in the area of cloud security and a frequent speaker at various international events and conferences, including the RSA Conference, and the author of more than 100 in-depth professional articles and papers on data privacy and security, including IBM Journals, IEEE Xplore, ISSA Journal and ISACA Journal. Ulf also holds a master’s in physics in Engineering from Chalmers University of Technology in Sweden and is Co-Author of Defending the database (Elsevier Ltd, 2007) and Real security for virtual machines (Elsevier Ltd, 2009)


Available here: