<img src="https://ad.doubleclick.net/ddm/activity/src=11631230;type=pagevw0;cat=pw_allpg;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=${GDPR};gdpr_consent=${GDPR_CONSENT_755};ord=1;num=1?" width="1" height="1" alt=""> Trusted Data Format (TDF): Open Standard for Data Protection
Trusted Data Format (TDF)

TDF: The Standard Transforming Data-Centric Security

Virtru's Data Security Platform and products are powered by the Trusted Data Format (TDF), an open standard designed to enforce object-level access control. This ensures that sensitive data remains protected and under the owner's control, no matter where it is created or shared.

Military technologists using TDF to protect data on laptops

The Trusted Data Format: A Secure Container for Shared Information

The Trusted Data Format (TDF) revolutionizes data security by embedding granular, policy-driven protections directly into data objects. Just as Kubernetes transformed application architecture with microservices, TDF brings "micro-security" to data, enabling precise control and protection no matter where the data travels.

TDF Images_Microsecurity for sharing data-01-1

What is the Trusted Data Format?

TDF is an open data encoding and metadata standard that binds security policies to individual data objects, such as files, emails, or streaming content. These policies dictate who can access the data and under what conditions, ensuring persistent control. Encryption can be optionally applied, depending on the level of security required by the policy.

By integrating seamlessly with tools like Google Workspace, Microsoft SharePoint, and Salesforce, TDF enhances data security without disrupting productivity, enabling businesses to collaborate confidently in a zero-trust environment.

A military user views an aerial map on a mobile phone. TDF icon shows that the data is protected by Virtru TDF

Persistent Control Through Policy-Driven Security

TDF binds policies—such as who can access the data and under what conditions—to metadata that travels with the data. This persistent connection ensures that data remains fully under the owner's control, even as it moves across systems and users. Owners can dynamically adjust policies to expand, restrict, or revoke access at any time.

TDF Images_Microsecurity for sharing data_kubernetes

TDF: The Kubernetes of Data Security

Just as Kubernetes orchestrates microservices for modular, scalable applications, TDF acts as a "micro-security orchestrator," embedding policies and encryption directly into individual data objects. This ensures data remains secure across workflows, offering flexibility and governance that drive innovation.

TDF Images_TDF - ABAC-1

Attribute-Based Access Control and End-to-End Encryption

TDF excels in enabling Attribute-Based Access Control (ABAC), where data attributes and user or system attributes are evaluated to determine access. Policies are dynamically enforced, and encryption can be applied as required to meet compliance and security standards.

By integrating with popular collaboration tools, TDF allows secure data sharing while maintaining workforce productivity, turning data security into a business enabler.

TDF-fortunecover-NEW

Ackerly knew he couldn’t prevent mass surveillance—but he could at least try to shield people’s information. So he founded a company, Virtru, based on a technology he invented to sheathe individual pieces of data with encryption. He called his creation the Trusted Data Format, or TDF. It makes it dramatically harder for anyone — a private hacker, a foreign state, or one’s own government — to pilfer what users want to protect.

Luke O'Brien
Fortune Magazine, 40 Under 40: "The Anti-Hacker"

Versatile, Extensible Data Security

The TDF standard powers a wide range of data protection scenarios across public and private sectors.

The original open standard, hosted by the U.S. Office of the Director of National Intelligence, provides a robust framework for binding metadata and policies to sensitive data.

Virtru’s open-source implementation of TDF offers developers SDKs and tools to build custom data-centric security solutions, available on GitHub. 

A lightweight variation optimized for streaming and sensor data, NanoTDF is ideal for IoT devices like Raspberry Pis, enabling secure, low-overhead operations.

Designed for the U.S. intelligence community, this variant maps policies to established data releasability standards, ensuring compliance with classifications like "Top Secret" or "Releasable to Allied Nations."

Built for NATO collaboration, ZTDF enables secure, interoperable data sharing between member nations under NATO Standardization Agreements.
TDF Globe

Virtru's Unique Capabilities, Built on the Trusted Data Format

ABAC Made Easy

Virtru makes it easy to bind granular policies to TDF-protected data for attribute-based access control (ABAC). These policies can be changed at any time.

Learn More

Policy Management and Enforcement

Define, manage, and dynamically enforce fine-grained access control policies.

Learn More

Federated Identity

As collaborators request access to protected data, TDF leverages existing accounts through federated identity and authentication frameworks such as OpenID, OAuth and SAML, to enable seamless access.

Learn More

Large File Support

TDF enables the encryption and decryption of very large files—up to 1 TB—including streaming files – making it easy to protect and share a wide range of content across domains. 

Learn More

Offline Create

For those working in airgapped or on-prem environments, TDF-enabled clients can generate TDF-protected files without an internet connection. The offline-created TDF can be sent to anyone via offline methods, or when the device is back online.

Learn More

Entitlements Management

Configure and manage connections to external ldPs, and define policy around identity.

Learn More

Ready to take the next step?

6,100 CUSTOMERS TRUST VIRTRU FOR DATA SECURITY AND PRIVACY PROTECTION.

Verizon-Logo-Homepage Department of Defense logo
Sofi-logo Recorded Future logo