Thales has launched CipherTrust Cloud Key Manager integrated with AWS external keystore . External Key Vault is a feature of the AWS Key Management Service announced by AWS at re:Invent 2022.
With growing regulatory requirements and growing calls for greater data sovereignty controls, the integration enables agencies to retain control of their encryption keys when migrating sensitive data to the AWS cloud.
The AWS external key vault has been jointly developed with Thales since its inception, and its combination with CipherTrust cloud key manager helps organizations that expect to put critical workloads on the cloud to achieve digital sovereignty during their digital transformation.
Ken Beer , general manager of AWS Key Management Services, said: “We have had a strong technical collaboration with Thales from the beginning on the development of the AWS external keystore specification, partly because of their expertise in developing hardware security modules and Extensive professional experience in key management services. Cloud computing has become the core of business operations. The combination of the expertise of both parties will provide organizations with solutions to specific needs, and let enterprises know that they have obtained industry-leading security in the process control.”
According to the Thales Cloud Security Study 2022 report, encryption is the number one operation for securing data in the cloud. However, only about a third (29%) of respondents said they had full control over the keys used to encrypt data. In a hybrid IT environment, user-controlled encryption and key management are essential safeguards for digital sovereignty in a modern data-driven world. This data-driven world is governed by privacy compliance requirements, as well as regulatory or general IT security recommendations such as shared responsibility models and NIS2 directives.
CipherTrust Cloud Key Manager allows AWS external key storage customers to manage their data independently of cloud service providers and meet these pressing regulatory requirements by leveraging strong encryption and data security methods. Also known as Hold Your Own Key (HYOK), this safeguard enables organizations to maintain key ownership independent of cloud databases.
Heleen Herselman , Vice President of AWS Powerhouse , T-Systems Cloud Service , said: “Different data protection regulations in various countries create challenges for global organizations migrating data to the cloud. CipherTrust Cloud Key Manager simplifies this challenge, ensuring that we are leveraging All the advantages of cloud services while maintaining compliance. As we and other organizations increasingly rely on multi-cloud environments, it is even more important to rely on Thales solutions.”
CipherTrust Cloud Key Manager is an industry-leading multi-key encryption key lifecycle management solution that supports all major public cloud service providers. With the significant growth of multi-cloud adoption, the solution enables users to manage all keys across clouds.
Todd Moore , Vice President of Encryption Products at Thales , said: “This is the first integration on the market that addresses a major pain point for AWS cloud customers , enabling customers to leverage protected AWS cloud data while retaining encryption keys outside the cloud. As the industry leader in key management solutions, we are proud to introduce an encryption solution that enables customers to maintain external control over their keys and the cryptographic operations that use them.CipherTrust Cloud Key Manager leads Advanced digital sovereignty technologies. We will continue to roll out cutting-edge security and compliance capabilities to support organizations’ digital transformation journeys.”
