Enterprises that are serious about protecting the integrity of their data, their customers’ data and complying with government regulations no longer seriously dispute the value of encryption. The challenge for many is how to control costs and easily manage this critical asset in today’s scale-out data environments. The answer, encryption key management.
Zettaset delivers a software-based encryption key management solution built around OASIS industry standards that can readily match the elasticity of virtual machines and cloud computing. As virtual machines running the database are provisioned (and de-provisioned) to balance capacity needs, no manual intervention is required at the management console. Deploying software-based key managers and HSMs (hardware security modules) is more cost-effective and less disruptive than traditional hardware approaches in highly elastic cloud environments, offering power users greater operational efficiencies.
The Zettaset XCrypt™ Data Encryption Platform provides a complete encryption solution for the enterprise that includes encryption software plus and integrated virtual key manager and HSM that can be easily added to a virtual machine or cloud when and where needed. For enterprises that do not have existing key management and HSM infrastructure, Zettaset XCrypt’s integrated, software-based key manager and HSM can ease deployment by greatly simplifying encryption installation and management.
The XCrypt Data Encryption Platform offers you a choice of different encryption solutions, depending on the needs of your data environment. Each one includes the integrated V-EKM and V-HSM.
Zettaset enables organizations to efficiently and securely manage and store cryptographic keys and policies throughout the key management lifecycle in the enterprise. Zettaset can deliver layered encryption for file, zone, directory and partition levels, depending on the granularity requirements of the data environment. Key management and encryption can be applied to NoSQL, Object and Hadoop, databases, as well as multiple file and object storage systems.
Every component of the Zettaset XCrypt Data Encryption Platform is fully-compatible with OASIS-standard Key Management Interoperability Protocol (KMIP) key managers and Public Key Cryptography Standard (PKCS) #11 hardware security module (HSMs), and therefore can fit into any customer environment where these products already exist. The Zettaset V-EKM key manager keeps a database of encryption keys which are encrypted and protected using master keys in HSMs. The master keys are accessed through a PKCS#11-standard interface.