Google Cloud External Key Manager (EKM)
Advanced data privacy in Google Cloud
Google Cloud Key Management Solutions
Google Cloud External Key Manager (EKM) allows you to create, store, and manage keys in a separate environment from encrypted data, using Futurex’s FIPS 140-2 Level 3 validated key management technology. Using Futurex’s integrated key management service, you can enhance data privacy, access control, and key provenance and maintain control over your own encryption keys.
Leading security for your Google Cloud data
Strengthen your security posture and maintain 100% control over the keys used to encrypt your Google Cloud data.
Fast migration to the cloud
With more than a dozen data centers across four continents, Futurex’s solution for Google Cloud EKM easily fulfils regional data residency requirements to expedite your migration to the cloud.
Unified platform for all your encryption needs
Easily integrate your Google Cloud EKM solution as part of a comprehensive CryptoHub ecosystem. CryptoHub enables your organization to deploy cryptographic processing and key management functionality across all of your applications, services, and network tools.
Turbocharged Google Cloud key management
As an officially supported External Key Manager (EKM) for Google Cloud, manage encryption for your entire Google ecosystem in a powerful, centralized platform.
Simple setup
Save time on setup with Futurex’s simple deployment process. Configure users and keys, create a new key ring in Google, and start managing your external keys.
Complete data privacy
Gain total control over your encryption keys and enhance data privacy with Futurex’s FIPS 140-2 Level 3 validated solution.
Expanded functionality
Enterprise-wide data protection
Futurex provides a versatile external key service using fully validated HSM and cloud technology. In addition to solutions for Google Cloud External Key Manager, the Futurex CryptoHub offers the following functionality:
- Cloud key management
- Data protection
- Public key infrastructure (PKI)
- Certificate authority (CA)
- Code signing
- Vaultless tokenization
Frequently Asked Questions
Google Cloud EKM allows you to create, store, and manage keys in a separate environment from encrypted data, using Futurex’s FIPS 140-2 Level 3 validated key management technology. With this, you can enhance data privacy, access control, and key provenance and maintain control over your own encryption keys.
Futurex’s Google Cloud EKM solution may be deployed via Futurex On-Premises Hardware, through the VirtuCrypt Cloud, or a hybrid of the two. All of which are:
- Secure: FIPS 140-2 Level 3 validated
- Compliant: regional data residency, privacy, and sovereignty mandates
- Resilient: deploy high-availability configurations with uptimes of 99.999%
- Scalable: expands to meet your needs
- Flexible: available on-premises, via Futurex’s cloud, or as a hybrid model
- Centralized: integrates with additional 3rdparty applications for key management
Futurex’s solution integrates with all Google Cloud services supported by their KMS.
- Log in to KMES Series 3 interface
- Configure users, keys, and JWT
- Log in to Google KMS dashboard
- Create a new key ring
- Create externally managed keys in Google KMS
- Test encryption and decryption operations with externally managed keys
- Artifact Registry
- BigQuery
- Compute Engine
- Cloud Logging: Log Router
- Cloud Spanner
- Cloud SQL
- Dataflow Appliance and Dataflow Shuffle
- Google Kubernetes Engine: Data on VM disks or Application-layer Secrets
- Pub/Sub
- Secret Manager
Yes, an integration guide for Google Cloud EKM is available for the following applicable device:
Want to learn more about Futurex Google Cloud EKM Integration?
Contact a Solutions Architect today.
