Control your data and encryption keys for digital sovereignty and meet compliance requirements
- Meet compliance mandates such as PCI DSS, GDPR, and CCPA
- Streamline encryption management with seamless key rotation
- Reduce administration costs with centralized key and policy management
- Optionally store encryption keys in FIPS 140-2 Level 3 hardware security module
Webinar: Getting Customers Successfully and Securely to Oracle Cloud Infrastructure
Join Alex Hanway, Thales Director of Business Development, and James Yang, Cloud Creek Systems Executive VP, to learn how to secure sensitive data in OCI.Watch the Webinar
Oracle Cloud Infrastructure (OCI) External Key Management Service (EKMS) is a new capability that allows customers to protect their data in OCI using encryption keys held inside CipherTrust Manager external to OCI.
- Move critical workloads with sensitive data to Oracle Cloud Infrastructure
- Maintain sovereign control of sensitive data
- Gain strong key control and security
OCI EKMS with Thales CipherTrust
CipherTrust Cloud Key Management (CCKM), which is a licensed component of the CipherTrust Manager, delivers external key storage, key generation, separation of duties, reporting, and key life cycle management to help fulfill internal and industry data security mandates. FIPS140-2 Level 3 certification available.
Enabling Organizations To:
- Maximize choice from a single console, manage Native, BYOK, HYOK keys across clouds
- Demonstrate compliance with privacy regulations such as GDPR, Shrems II, PCI-DSS, CCPA
- Improve operational sovereignty to protect against internal and external bad actors
- Reduce threat surface by centralizing control of keys outside of cloud providers
- Increase efficiency and reduce costs by simplifying and automating key management
- Faster time to value by speeding up migration to the cloud
We’re dedicated to making Oracle Cloud the most seamless and secure environment for customers in highly regulated regions and industries. Our EU Sovereign Cloud enables us to support EMEA customers in their data sovereignty strategies, and the HYOK integration with Thales is an integral part of our ability to support these compliance needs. This partnership will also greatly benefit U.S. customers in industries like financial services, allowing them to take full advantage of Oracle Cloud offerings with the privacy and security add-ons of Thales’ HYOK capabilities."
Mahesh ThiagarajanSenior Vice President, Software Development at Oracle Cloud Infrastructure
Cloud Key Manager for Oracle Cloud Infrastructure
CCKM gives organizations the ability to physically store their keys outside of OCI and to seamlessly manage the encryption key lifecycle for OCI Services.
Lösungsbeschreibung: CipherTrust Cloud Key Manager
Viele Anbieter von Infrastructure-, Platform- und Software-as-aService stellen Data-at-Rest-Verschlüsselung zur Verfügung, bei der die kryptographischen Schlüssel vom Anbieter verwaltet werden. Allerdings fordern viele branchenspezifische oder interne Datenschutzvorschriften sowie die durch die Cloud Security Alliance definierten Best Practices der Branche, dass Schlüssel separat vom Anbieter von Cloud-Diensten sowie den dazugehörigen Verschlüsselungsverfahren gespeichert und verwaltet werden sollten.
Configure CipherTrust Manager
Follow the steps in our documentation to complete set up.