Freely subscribe to our NEWSLETTER

For organisations with heterogeneous database platforms and an increasing number of encryption keys from disparate encryption systems it reduces administration costs and security risks. This new solution extends existing key management technology used in Vormetric Data Security to Oracle and Microsoft SQL Server Transparent Data Encryption (TDE) systems, and custom applications with built-in encryption.

According to Colin Tankard, Managing Director of Vormetric channel partner, Digital Pathways, “Before jumping into potentially large and complex encryption projects, organisations should consider the available options and enforce a tactical and focused approach to encryption services to minimise the impact to systems, applications, and personnel as well as critical business processes, such as recovery scenarios.

Vormetric Key Management provides encryption key lifecycle management and enables centralised management of millions of encryption keys and policies. The solution is offered as a Hardware Security Module (HSM) appliance that can secure all keys to ensure they are never lost or compromised, always available, and easy to restore.

Vormetric Key Management Elements :

To ensure centralised management and security, as well as seamless integration with Oracle TDE, Microsoft SQL Server TDE, and applications with built-in encryption, Vormetric Key Management is comprised of the following three elements:

• Vormetric Data Security Manager - is a HSM appliance that provides centralised key and policy management. It features an intuitive web based management console for enterprise-wide data security administration, policy management and audit of encryption keys.

• Vormetric Key Agents - integrate with Oracle TDE and Microsoft SQL Server TDE and communicate with the Vormetric Data Security Manager to provide life cycle management for Master Encryption Keys.

• Vormetric Key Vault – provides FIPS-certified, high availability storage and backup of symmetric and asymmetric encryption keys of any strength, and tracks expiration dates.

Vormetric Key Management supports the following industry standards:

• PKCS#11: The standard for encryption and key management that is available as a library of APIs and is supported by Oracle 11gR2 Transparent Data Encryption

• EKM: Microsoft Extensible Key Management (EKM) APIs for Microsoft SQL Server 2008 Transparent Data Encryption

• KMIP: Organisation for Advancement of Structured Information Standards (OASIS) Key Management Interoperability Protocol (KMIP).

– Availability

Vormetric Key Management is immediately available to beta users. It will be generally available in March 2012. Current Vormetric customers can upgrade their existing Vormetric Data Security deployments with these new capabilities. KMIP support is scheduled for mid-2012.