KMES Series 3
Encryption key management system
Encryption key management system
The Key Management Enterprise Server (KMES) Series 3 is a powerful and scalable key management system. Manage cryptographic keys, digital certificates, and other encrypted data. It can establish an offline root CA to form a public key infrastructure (PKI) for mutual authentication and digital signing operations. The KMES Series 3 contains a built-in FIPS 140-2 Level 3-certified hardware security module (HSM) to handle cryptographic operations. Available on-premises and in the cloud, the KMES Series 3 is an all-in-one solution to protect sensitive data.
Automate repetitive key management tasks and set automatic backups for encryption keys, databases, and logs.
Segregated key containers enable a single, logically-isolated cryptographic resource pool for multiple applications.
Construct a highly available network of key management devices with automatic key and certificate synchronization.
The KMES Series 3 is the last word on key lifecycle management. With vendor neutral APIs, automation and scripting capabilities, and an embedded FIPS 140-2 Level 3 validated HSM, the KMES Series 3 forms the cornerstone of your enterprise security infrastructure.
From managing specific keys to authenticating entire networks of devices, the KMES’s key and certificate lifecycle management capabilities make it easy to strengthen data security, digitally sign objects and code, and establish a secure PKI.
Click diagram to enlarge
Symmetric and asymmetric key management for 3DES DUKPT, X.509 v3, EMV and support for X9.17, AKB, and TR-31 (including custom optional fields) key block formats.
Versatile, permission-based user access control system to enforce dual control and segregation of duties with exportable user activity logs.
Simple graphical user interface (GUI) with no command-line tasks required for initial setup, regular auditing, firmware upgrades, or maintenance.
Supports mutual authentication under a trusted offline root CA and generates and manages self-signed certificates to establish a trusted public key infrastructure (PKI).
Remotely inject encryption keys into ATM, POS, and mobile POS devices, reducing the logistical burden associated with direct encryption key injection, meeting industry and regulatory standards.
Customizable reporting with automatic signing and transmission of activity logs to a remote syslog server for internal and external audits.
VirtuCrypt key management services are backed by the KMES Series 3 with hardened, FIPS 140-2 Level 3 validated technology. Whether an organization requires complete infrastructure management or simply more functionality for existing Futurex infrastructure, VirtuCrypt offers a variety of service structures designed to meet security requirements.