Thales background banner

CipherTrust Key Broker for Azure


Free Evaluation

Key Broker for Azure

CipherTrust Key Broker for Azure is designed for Microsoft Azure and Office 365 customers, who to securely generate, upload and manage cryptographic keys for their Azure Key Vaults quickly, securely and affordably. By using DPoD, customers can enjoy peace of mind when using Microsoft’s cloud-based services, secure in the knowledge that they are always in control of their keys.

The Key Broker for Azure service provides Bring Your Own Key (BYOK) capabilities which allow Azure customers to bring a key to Microsoft Azure Key Vault for use with Office 365 encryption while maintaining control over that key. This on-demand feature allows them to secure multiple Azure key vault enabled services in minutes, from compute to storage, DevOps to analytics, and to easily revoke access to that key if security, access control or compliance reasons require an immediate change of policy.

The Azure Key Broker is a simple cloud based key management solution that provides a fast to deploy, easy to access and secure key management solution. With no hardware or software to deploy or manage, customers get all the benefits of BYOK but with greatly reduced implementation and management overheads.

This service is just one of many available DPoD options for customers to quickly scale their data protection services using the cloud. The DPoD service is cloud agnostic and can be used to simplify the instantiation and management of Root of Trust, PKI, BYOK, and other services across multi-cloud, hybrid and on-premises deployments. 

Capabilities for Key Brokering for Azure include:

  • Subscribe
  • Provision services
  • Define security policies
  • Reports

In addition to DPoD, Thales has a broad range of solutions that help secure Microsoft Azure, including Thales Luna HSM and CipherTrust Key Manager BYOK solutions.

This service is just one of many available DPoD options for customers to quickly scale their data protection services using the cloud. The DPoD service is cloud agnostic and can be used to simplify the instantiation and management of Root of Trust, PKI, BYOK, and other services across multi-cloud, hybrid and on-premises deployments. CipherTrust Key Broker services currently available: Key Broker for Azure, Key Broker for Salesforce, and Key Broker for Google Cloud EKM.

CipherTrust Key Broker for Azure

 

DPoD Tech Talk Volume 15: Deploying a DPoD HSM Service

Securing Microsoft Office 365 and other Azure applications with CipherTrust Key Broker for Azure - White Paper

Securing Microsoft Office 365 and other Azure applications with CipherTrust Key Broker for Azure - White Paper

Customers’ behavior has changed with the advent of the cloud. Now, customers expect easy-to-use services where they pay only for what they need. However, while they want more of these services, they either cannot or will not give up control of their data.

Bring Your Own Encryption Strategies for a Multi-Cloud World - Webinar

Bring Your Own Encryption Strategies for a Multi-Cloud World - Webinar

The 2020 Thales Data Threat Report found that 100% of surveyed organizations have sensitive data in the cloud and 57% of it is encrypted. In addition, the trend shows organizations are encrypting more often to protect brand reputation, authorize data use, and to meet...

Creating a Key Broker for Azure Service – Technical document

Creating a Key Broker for Azure Service – Technical document

Learn how to create (deploy) a Key Broker for Azure service in the DPoD offering.

Generating a Key and importing it to Azure Key Vault – Technical document

Generating a Key and importing it to Azure Key Vault – Technical document

Learn how to generate a key in the Key Broker for Azure service.