The HSM On Demand service provides root of trust for storage of keys used in Microsoft SQL so that encryption keys do not reside with encryption data. Data can be encrypted by using encryption keys that only the database user has access to on in the HSM On Demand service and cryptographic operations such as key creation, encryption, decryption, etc. can be offloaded to the HSM.
In conjunction with the HSM On Demand services from Thales Data Protection On Demand, users can ensure secure storage of keys and cryptographic operations such as key creation, deletion, encryption and decryption, using the Extensible Key Management (EKM) feature. Data can be encrypted by using encryption keys that only the database user has access to on the external EKM/HSM module.
Thales Data Protection on Demand (DPoD) is a cloud-based platform that provides a wide range of Cloud HSM and key management services through a simple online marketplace. With DPoD’s extensive platform of Luna Cloud HSM, CipherTrust Key Management, payment, and partner-led...