Thales News Release

Thales Announces New Security-as-a-service For Centralized Control Of Encryption Keys Used For Microsoft Azure And Amazon Web Services

October 26, 2017

CipherTrust Cloud Key Manager delivers full security, visibility, and management for enterprises to control their “bring your own” encryption keys

Thales, a leader in critical information systems, cybersecurity and data security, announces CipherTrust Cloud Key Manager for support of Microsoft Azure Key Vault and Amazon Web Services (AWS) Key Management Service (KMS) bring your own key (BYOK) capabilities. The solution allows users of these dominant public cloud solutions to meet compliance mandates and further protect their most sensitive data by creating and managing encryption keys separate from their cloud provider’s infrastructure.

To help save time and money, a growing number of enterprises are eschewing legacy technologies in favor of cloud and SaaS environments. While these technologies are digitally transforming businesses, they present challenges: enterprise data is fair game for cybercriminals regardless of operating environments, and meeting compliance and best practices requirements isn’t always straightforward. In response, enterprises are developing encryption strategies to better protect and control their data. While effective, this presents a new hurdle; when considering that many enterprises utilize multiple cloud providers, the management of encryption keys can prove difficult.

Thales CipherTrust Cloud Key Manager offers a number of benefits to help enterprises control and secure encryption keys in multi-cloud environments, including:

  • Providing unique, enterprise-ready encryption key lifecycle management spanning an ever-growing list of leading cloud vendors (Salesforce, Microsoft Azure, AWS)
  • Centralizing multi-cloud encryption key creation and management separate from the cloud provider’s control with a choice of a SaaS or on-premises deployment
  • Achieving compliance with a FIPS 140-2 and Common Criteria certified key store with visibility into how, when and by whom encryption keys are used through logging and a set of built-in usage reports

Peter Galvin, VP of Strategy for Thales says:

“Organizations are struggling to manage an exploding number of encryption keys. CipherTrust Cloud Key Manager puts control in the hands of enterprises rightfully concerned about the compliance and data protection challenges inherent in multi-cloud environments. The intuitive and well-designed as-a-service offering makes managing encryption keys simpler by eliminating the need to architect, purchase and deploy hardware. Through an easy to use web interface, organizations can simply create, rotate and backup keys in a growing list of cloud providers”.

Sumedh Barde, Group Program Manager for Microsoft says:

“Our largest customers have heterogeneous application environments. Managing keys across these diverse locations is complex. CipherTrust Cloud Key Manager solves this problem by giving our customers a single pane of glass to discover, manage, and monitor their encryption keys across Microsoft Azure and Office 365, as well as other locations. The solution leverages Microsoft’s native key service, Azure Key Vault, so our customers continue to get the best experience from their apps in the Microsoft cloud. All of this makes the Thales solution a welcome addition to the Microsoft Azure security ecosystem”.

Available as a service, or for on-premises deployments, CipherTrust Cloud Key Manager supports Microsoft Azure, including Office 365, as well as Salesforce Shield Platform Encryption and Amazon Web Services. For more information, please click here.