Futurex BYOK Methodology and Cloud Key Management
Traditionally, cloud platforms have been able to protect customer data using transparent encryption functions for both in-transit and at-rest data. Though these forms of encryption are secure, the providers become essential key holders, with the ability to access and decrypt data. This both weakens the security of the data itself, but also increases an organization’s concern about it’s right to access and manage their owned data. In response, Futurex and VirtuCrypt have developed a Bring Your Own Key cloud key management solution that will return full-control of both data and keys to consumers.
Bring Your Own Key (BYOK) Methodology
At a high level, cloud key management enables users to manage the cryptographic key lifecycle in house. One of the main methodologies behind cloud key management is Bring Your Own Key or BYOK. Through BYOK methods, users will be able to generate their own keys using FIPS 140-2 Level 3 devices to ensure the integrity of their sensitive information. Futurex’s in-house cloud key management service, offered through the KMES Series 3, easily supports and integrates BYOK into organization’s current cryptographic infrastructure, enabling organizations to control the full lifecycle of their keys and the integrity of their data.
Freedom to Control Data and Keys
The main benefit of BYOK is enabling consumers to maintain control of both their sensitive information. With traditional forms of cloud-based key management, cloud providers maintained full access to an organization’s data by controlling the keys that keeps that data secure. While some providers allowed for customers to establish policies of usage, these providers still maintained full in-house control of such keys. Futurex, by enabling a BYOK methodology, allows for complete control of an organization’s data to be returned to them. While organizations control the keys used to encrypt and decrypt their sensitive information, they can control the movement of their data, as well as enable a way to transition from one cloud provider to the next if such a need ever occurs.
Heightened Data Integrity
Another benefit of Futurex’s BYOK cloud key management service is providing safer, more secure environments for customer data. When cloud providers control the keys, there’s an inherent concern over whether or an organization’s data is being accessed and decrypted by those same key holders. Having more than one party outside of the organization itself holding these keys weakens the security of both the cloud platform itself, as well as the sensitive data it stores. By implementing a BYOK system, Futurex has eliminated the cause for this concern, as organizations will now become the only ones to access and control their sensitive information.
VirtuCrypt Cloud Key Management Service
VirtuCrypt is combining its enterprise-class cloud security services with Futurex’s robust key management device, the KMES Series 3, to bring BYOK cloud key management services to organizations worldwide. VirtuCrypt’s Cloud Key Management license enables organizations to access the same benefits of the KMES Series 3—such as key generation, transfer, storage, and deletion—while also allowing an easy integration to the consumer’s designated cloud service provider. This service enables VirtuCrypt customers to access their cloud service provider directly through the VIP Dashboard to monitor their data and key usage.
For more information regarding cloud key management solutions, and how BYOK can work for your organization, please contact a member of Futurex’s Solutions Architect team to schedule a personalized demo.