Fortanix Cloud Key Manager Aims to Secure Private Data in Public Clouds

Fortanix is offering a solution to help businesses secure private data as they migrate to the public cloud. Fortanix Cloud Key Manager applies consistent encryption key management policies across targets and offers customers a single point of control.

Tags: cloud, data protection, encryption, Fortanix, hybrid, KMS, public cloud, security,

Fortanix, a data-first multicloud security company, has launched a solution to help businesses secure private data as they migrate to the public cloud.

 

Fortanix Cloud Key Manager applies consistent encryption key management policies across multiple cloud providers, tenants, and regions - while enabling keys from any cloud or on-premises Hardware Security Module (HSM) to encrypt data anywhere.

 

The approach secures hybrid applications handling sensitive data by performing cryptographic operations across multiple clouds and on-premises data centers from a single point of control.

 

According to Gartner, 70% of businesses are adopting a hybrid cloud and multi-cloud strategy to augment their internal datacenters. The challenges of protecting data and using encryption for multiple hybrid, public cloud, and on-premises environments increases complexity, cost, and security risk. As workloads and sensitive data move to the cloud, keeping cryptographic keys, shared secrets and tokens secure is critical to secure public cloud deployments and successful digital transformation.

 

The Fortanix approach aims let customers control their keys as they move to the cloud.

 

In specific, Fortanix

  • Protects sensitive data across public, hybrid, multi, and private cloud environments
  • Enablers customers to securely operate even the most sensitive applications in any environment
  • Encrypts data everywhere — at rest, in motion, and in use
  • Provides single point of management and control for all encryption keys, secrets and tokens

“Privacy regulations and data breaches are driving the need for more data security in public clouds, but data security solutions designed for on-premises don’t translate,” said Faiyaz Shahpurwala, chief product and strategy officer at Fortanix. “Fortanix gives businesses a data security platform that can bridge on-premises and public cloud environments to prevent data breaches and comply with continually evolving privacy regulations.”

 

The latest offering, Fortanix Cloud Key Manager, includes these features and capabilities:

External Key Management. To encrypt data in the cloud using encryption keys stored outside the cloud.

 

Native Encryption Key Management. To generate, rotate, and manage native AWS, Google Cloud, Microsoft Azure, and Salesforce master encryption keys.

 

Cloud Encryption Key Disaster Recovery. To back up, restore, and re-import master encryption keys for public cloud KMS.

 

Multi-Region/Tenant Cloud Encryption Key Management. To manage encryption key policies for separate departments, subsidiaries, and geographic regions to achieve compliance and conform with data privacy regulations.

 

Cloud Secrets Management. To manage API and machine credentials across multiple clouds, with HSM protected central secrets management to protect private data and ensure privacy compliance.

 

Multicloud HSM Key Management. To use keys generated in any cloud or on-premises Hardware Security Modules (HSMs) to encrypt data anywhere, enabling hybrid applications that span multiple public and private clouds.

 

Bring Your Own Key (BYOK). To generate, upload, rotate, and manage master encryption keys in cloud KMS from a single system across AWS, Google Cloud, Azure, and SaaS platforms including Salesforce.

A Fortanix datasheet summarizes the benefits over traditional BYOK this way:

While many cloud service providers have allowed customers to bring their own keys (BYOK), Fortanix enable customers to bring their own key management system (BYOKMS) where encryption keys can be stored in their own datacenters with a single point of management and auditability. When customers control their own keys, they can move applications bound by compliance requirements such as the Payment Card Industry Data Security Standard (PCI DSS) to the public cloud.

Fortanix Cloud Key Manager is available for use across AWS, Google Cloud, and Microsoft Azure.




back