Full control and lifecycle management of your storage encryption keys
Significant growth in encrypted workloads across on-premises and cloud-based deployments presents enterprises with a new challenge: how to effectively manage the rapidly accumulating encryption keys. Encryption of sensitive data is necessary to address the ever-present threats facing organizations but managing keys for tens of thousands of encrypted workloads is nontrivial. While data storage products often feature their own encryption, enterprise-scale key management requires specific capabilities that extend beyond the scope of storage offerings.
Key management for encrypted cloud and on-premises workloads
Entrust KeyControl integrates with data storage products to automate and simplify the lifecycle of encryption keys, including key creation, storage, distribution, rotation, and revocation. Using the key management interoperability protocol (KMIP), KeyControl serves as a FIPS 140-2 Level 1 certified key management server for a growing list of storage solutions and can scale to support thousands of encrypted workloads in large deployments. The optional addition of an Entrust nShield HSM provides FIPS 140-2 Level 3 generation and protection of keys for high assurance use cases.