Simplify Key Management and Certificate Vaulting

Enterprise encryption key management centralizes management of keys for Vormetric Data Security Platform products, Microsoft SQL TDE, Oracle TDE, KMIP-compliant encryption products, and more.

Integrated Key Management

With Vormetric Key Management, you can centrally manage keys from all Vormetric Data Security Platform products, and securely store and inventory keys and certificates for third-party devices—including IBM Security Guardium Data Encryption, Microsoft SQL TDE, Oracle TDE, and KMIP-compliant encryption products. By consolidating key management, this product fosters consistent policy implementation across multiple systems and reduces training and maintenance costs.

Key Management
Unify Key and Certificate Management

Leverage a single key management platform for managing keys from Vormetric Data Security Platform products and third-party devices—including Microsoft SQL TDE, Oracle TDE, and KMIP-compliant encryption products.

Securely Vault Keys

Securely store keys in the Vormetric Data Security Manager (DSM), which is available as a virtual appliance and FIPS 140-2 Level 3-certified hardware appliance.

Prevent Unplanned Downtime

Maximize key availability and redundancy, leveraging secure replication of keys across multiple appliances with automated backups. Automated alerts help prevent unexpected key expiration.

Deployment Flexibility

Vormetric Key Management offers all the reliability and availability capabilities of the DSM. The DSM is offered as a virtual appliance and via two hardware appliances: The V6000 and the V6100. The V6100 is a FIPS 140-2 Level 3-certified appliance that is equipped with a Thales nShield Solo hardware security module (HSM). The platform is also available on Amazon Web Services and Microsoft Azure marketplaces.

Strong, Auditable Controls

With the DSM, strong separation-of-duties policies can be enforced to ensure that one administrator does not have complete control over data security activities, encryption keys, or administration. In addition, the DSM supports two-factor authentication for administrative access.

Efficient Operations

The DSM minimizes costs by providing central key management of heterogeneous encryption platforms, including Vormetric Data Security Platform products, IBM Security Guardium Data Encryption, Microsoft SQL TDE, Oracle TDE, and KMIP-compliant encryption products. The DSM features an intuitive Web-based console and APIs for managing encryption keys, policies, and auditing across an enterprise. The V6100 hardware appliance also features nShield Remote Administration, which enables efficient management of distributed environments. The product also centralizes log collection.

Manage security objects: X.509 certificates, Symmetric and asymmetric encryption keys

Administration

  • Secure-web, CLI, API
  • Bulk import of digital certificates and encryption keys
  • Validates on import
  • Extracts basic attributes from uploaded certificates and keys for reporting
  • Command line scripts
  • Retrieval and removal

Third-party encryption: Microsoft SQL TDE, Oracle TDE, IBM Security Guardium Data Encryption, and KMIP-clients

API support: PKCS#11, Microsoft Extensible Key Management (EKM), and OASIS KMIP

Key availability and redundancy: Secure replication of keys across multiple appliances with automated backups

Watch our interactive demo Explore
Schedule a live demo Schedule
Get in contact with a specialist Contact us