Enterprise Key Management with OASIS KMIP

Slides:



Advertisements
Similar presentations
Notes: Update as of 1/13/2010. Vulnerabilities are included for SQL Server 2000, SQL Server 2005, SQL Server Oracle (8i, 9i, 9iR2, 10g, 10gR2,11g),
Advertisements

Dell Compellent and SafeNet KeySecure
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.
Public Key Infrastructure from the Most Trusted Name in e-Security.
SODA Archiving October 2013
KMIP - Hardware Security Modules Meta-Data-Only (MDO) Keys Saikat Saha & Denis Pochuev Feb 2012.
1 The OASIS KMIP Standard: Interoperability for the Cryptographic Ecosystem Jon Geater OASIS KMIP TC With thanks to Bob Griffin, co-chair,
4/23/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
KMIP - Hardware Security Modules Meta-Data-Only (MDO) Keys Saikat Saha & Denis Pochuev Feb 2012.
Security Policy and Key Management Centrally Manage Encryption Keys - Oracle TDE, SQL Server TDE and Vormetric. Tina Stewart, Vice President.
1© Copyright 2016 EMC Corporation. All rights reserved.1 SCALEIO WITH CLOUDLINK.
Clouding with Microsoft Azure
PERFORMANCE TECHNOLOGIES A.E. June 2017
AuraPortal Cloud Helps Empower Organizations to Organize and Control Their Business Processes via Applications on the Microsoft Azure Cloud Platform MICROSOFT.
Univa Grid Engine Makes Work Management Automatic and Efficient, Accelerates Deployment of Cloud Services with Power of Microsoft Azure MICROSOFT AZURE.
MICROSOFT AZURE ISV PROFILE: BMC SOFTWARE
TOPdesk Service Management Software on Azure
Avenues International Inc.
Dell Compellent and SafeNet KeySecure
Microsoft Azure-Powered BlueCielo Meridian360 Portal Improves Asset Data Integrity and Facilitates Secure Collaboration with External Stakeholders MICROSOFT.
Barracuda Networks Creates Next-Generation Security Solutions That Enable Customers to Accelerate Their Adoption of Microsoft Azure MICROSOFT AZURE APP.
Ralleo Enterprise-Grade Solution for Managing Change and Business Transformation Provides Opportunities to Better Analyze Real-Time Data MICROSOFT AZURE.
Partner Logo Veropath Offers a Next-Gen Expense Management SaaS Technology Solution, Built Specifically to Harness Big Data Analytics Capabilities in Azure.
New Heights by Guiding Them into the Cloud
SMS+ on Microsoft Azure Provides Enhanced and Secure Text Messaging, with Audit Trail, Scalability, End-to-End Encryption, and Special Certifications MICROSOFT.
Wonderware Online Cost-Effective SaaS Solution Powered by the Microsoft Azure Cloud Platform Delivers Industrial Insights to Users and OEMs MICROSOFT AZURE.
Hosted on Azure, LoginRadius’ Customer Identity
Veeam Backup Repository
CS691 M2009 Semester Project PHILIP HUYNH
OpenNebula Offers an Enterprise-Ready, Fully Open Management Solution for Private and Public Clouds – Try It Easily with an Azure Marketplace Sandbox MICROSOFT.
Built on the Powerful Microsoft Azure Platform, Lievestro Delivers Care Information, Capacity Management Solutions to Hospitals, Medical Field MICROSOFT.
MyHealthDirect’s Enterprise Scheduling Platform, Based on Microsoft Azure, Improves the Patient Experience and Reduces Patient Readmissions MICROSOFT AZURE.
KMIP Key Management with Vormetric Data Security Manager
Yocale, Built on Azure: Convenient Online Booking Keeps Appointment Books Filled and Eliminates Scheduling Hassles for Local Business Owners MICROSOFT.
KMIP Key Management with Vormetric Data Security Manager
FACTON Provides Businesses with a Cloud Solution That Elevates Enterprise Product Cost Management to a New Level Using the Power of Microsoft Azure MICROSOFT.
Running on the Powerful Microsoft Azure Platform,
Enabling Encryption for Data at Rest
Interlake Hybrid Cloud Management Suite
Intelledox Infiniti Helps Organizations Digitally Transform Paper and Manual Business Processes into Intuitive, Guided User Experiences on Azure MICROSOFT.
Enabling Encryption for Data at Rest
Be Better: Achieve Customer Service Excellence and Create a Lean RMA and Returns Process with Renewity RMA and the Power of Microsoft Azure MICROSOFT AZURE.
Scalable SoftNAS Cloud Protects Customers’ Mission-Critical Data in the Cloud with a Highly Available, Flexible Solution for Microsoft Azure MICROSOFT.
CS691 M2009 Semester Project PHILIP HUYNH
Organization for the Advancement of Structured Information Standards
Cloud Fleet Manager from Hanseaticsoft Enables Shipping Organizations to Meet Challenges and Improve Structures on the Azure Cloud Platform MICROSOFT AZURE.
PowerHub on Microsoft Azure Enables Renewable Energy Professionals to Track and Manage Projects from a Centralized Platform Accessible Anywhere MICROSOFT.
The Only Digital Asset Management System on Microsoft Azure, MediaValet Is Uniquely Equipped to Meet Any Company’s Needs MICROSOFT AZURE ISV PROFILE: MEDIAVALET.
Zadara™ Virtual Private Storage Arrays™: High Performance, High Availability NAS & SAN by the Hour, with Private, Dedicated Resources MICROSOFT AZURE.
Data Security for Microsoft Azure
Unitrends Enterprise Backup Solution Offers Backup and Recovery of Data in the Microsoft Azure Cloud for Better Protection of Virtual and Physical Systems.
CloneManager® Helps Users Harness the Power of Microsoft Azure to Clone and Migrate Systems into the Cloud Cost-Effectively and Securely MICROSOFT AZURE.
Partner Logo Azure Provides a Secure, Scalable Platform for ScheduleMe, an App That Enables Easy Meeting Scheduling with People Outside of Your Company.
Catalyze Redpoint Platform on Microsoft Azure
Dell Data Protection | Rapid Recovery: Simple, Quick, Configurable, and Affordable Cloud-Based Backup, Retention, and Archiving Powered by Microsoft Azure.
Public Key Infrastructure from the Most Trusted Name in e-Security
Keep Your Digital Media Assets Safe and Save Time by Choosing ImageVault to be Your Digital Asset Management Solution, Hosted in Microsoft Azure Partner.
TEMPLATE.
One-Stop Shop Manages All Technical Vendor Data and Documentation and is Globally Deployed Using Microsoft Azure to Support Asset Owners/Operators MICROSOFT.
Appcelerator Arrow: Build APIs in Minutes. Connect to Any Data Source
Student: Ying Hong Course: Database Security Instructor: Dr. Yang
ADAM on Microsoft Azure Streamlines Access and Control of Full Function Digital Asset and Product Content Management for All Workers MICROSOFT AZURE ISV.
Abiquo’s Hybrid Cloud Management Solution Helps Enterprises Maximise the Full Potential of the Microsoft Azure Platform MICROSOFT AZURE ISV PROFILE: ABIQUO.
FileFacets Information Governance Solution Performs High-Quality Automated Enterprise Content Management Migration, Built on Azure MICROSOFT AZURE APP.
TEMPLATE NOTES Our datasheet and mini-case study templates are formatted specifically for consistency of branding at Microsoft. Please do not alter font.
Harness the competitive advantages of Power BI and obtain business-critical insights with Adastra’s enterprise analytics platform using Microsoft Azure.
Single Cell’s Progenitor Powered by Microsoft Azure Improves Organisational Efficiency with Strategic Procurement, Contract Management, and Analytics MICROSOFT.
Last.Backend is a Continuous Delivery Platform for Developers and Dev Teams, Allowing Them to Manage and Deploy Applications Easier and Faster MICROSOFT.
Nuvolex and Microsoft Azure Combine to Deliver a Multitenant Office 365 Management Platform that Ranks Among Most Advanced in the Industry MICROSOFT AZURE.
Zendos Tecnologia Utilizes the Powerful, Scalable
Presentation transcript:

Enterprise Key Management with OASIS KMIP RSA Conference 2018

What does KMIP do? Key Material & Metadata Transport Security Applications or Appliances KMIP Key Management Server Create, Register, Locate and Retrieve Encryption Keys & Security Objects Supports Symmetric Keys, Asymmetric Keys, Certificates, etc. Much more than just add, modify & delete Many extended services: Encrypt, Decrypt, Signing, Split-Keys etc. Rich metadata for essential cryptographic management The KMIP specification includes an incredibly broad range of capabilities for full lifecycle management of security objects, with almost unlimited extensibility through a flexible, yet interoperable attribute model. 46 Operations (much more than just add, modify & delete) enables Security Appliances/Applications to perform tasks including: Encryption, Decryption, Authentication, Certification, Signing, Verification and Split-Key operations. 9 Object types catering for many more security objects include: Certificate, Certificate Request, Opaque Object, PGP Key, Private Key, Public Key, Secret Data, Split Key, Symmetric Key 54 Attributes to represent information (meta-data) about each Object under management

KMIP 2018 RSA Interop Demonstration Over the last month implementations from these vendors have undergone a rigorous Interoperability testing process to prove the latest additions to the KMIP Specification and deliver true multi vendor interoperability. It is this rigor that ensures conformant implementations meet the aims of the KMIP Technical Committee and the expectations of the market If you have not already seen a demonstration from at least one of these members, please ask for a demonstration at the conclusion of this presentation.

KMIP RSA 2018 Test Results 9 KMIP TC members 17 implementations 8 Client Implementations 9 KMIP Technical Committee members testing 17 implementations 8 Client Implementations 9 Server Implementations Over 33,000 successful test runs 72 Test combinations across 4 encodings 9 Server Implementations Over 33,000 successful test runs 72 Test combinations 4 encodings

KMIP Deployed in Solutions KMIP solutions are deployed across in all industry sectors, delivering management of security objects for: Cloud Storage Identity Management Financial systems Automotive Healthcare Email Provisioning and supply chain PKI Communications Authentication Defense

KMIP Deployed by Organizations Many organizations are relying on KMIP to ensure management and visibility of their security object It remains the default standard for full lifecycle security object management

KMIP Specification Development Enterprise Requirements Specification Development Being part of the OASIS KMIP TC enables vendors to more quickly bring their customers’ requirements to the standards development process. The enterprise requirements drive the Specification development which Drives the Product Testing which is fed back into the enterprise Product Deployment Specification Testing

KMIP and HP  HPE  Micro Focus Originator and supporter of KMIP development since 2009 One of 4 founders authoring the original draft 0.1 spec 8 years participation in the annual OASIS KMIP interop Implemented KMIP across entire HPE Storage portfolio Largest enterprise deployments of KMIP clients/servers

Micro Focus Security Enterprise Secure Key Manager Key management for enterprise servers, storage, apps Atalla AT1000 Payments HSM FIPS Level 3, highest PIN processing performance Voltage ArcSight Fortify NetIQ

Enterprise Secure Key Manager High-assurance key protection for encryption applications OASIS KMIP Server Centrally manage enterprise keys Reliably separate keys from data Automate and simplify operations Integrates large IT ecosystems Full range of storage, server and software clients KMIP standard qualified partners Features at a Glance Trusted: FIPS 140-2 validated and CC certified Reliable: 1U redundant hardware Available: active-active 8-node clustering Scalable: largest enterprise and geographic deployments Interoperable: industry-standard KMIP versions 1.0 – 1.4, 2.0

Security & business continuity with market-leading interoperability Enterprise Secure Key Manager Security & business continuity with market-leading interoperability HPE ProLiant Servers with built in Secure Encryption HPE StoreOnce Backup HPE 3PAR StoreServ (Disk and All-Flash Array) HPE StoreEver Tape Libraries Enterprise Secure Key Manager Partner SDKs KMIP Clients HPE XP7 High End Storage x8 Connected MX Openstack Barbican BackBox Virtual tape NonStop Servers

OASIS KMIP standard: Open interoperability for partners ESKM leads in compliance for application interoperability StoreSafe virtual appliance Network proxy-based solution BACKBOX for NonStop Virtual Tape Controller Storage solutions Filer Systems (NSE Appliances) SDKs Enterprise Secure Key Manager x 8 SDKs VSP and HUS High-end storage systems VM Encryption and vSan Data at Rest Encryption Openstack Barbican Big Data / NoSQL Encryption Database

ESKM KMIP Partner Program Open to all vendors/organizations supporting KMIP ESKM KMIP test server access, joint solution qualification No other costs or fees Benefits Mutual interoperability certification and support Customer integration/installation guide Joint co-branded solution brief Ongoing new release test access

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.