Cryptsoft adds HSM appliances to enterprise key management solutions
BRISBANE, Australia - Jan. 26, 2015 - PRLog -- Cryptsoft, the major OEM provider of technology to the enterprise key management security market today announced the latest release of a converged key management and hardware security module solution.
Increasing use of data and file encryption across the enterprise coupled with the deployment of unmanaged hardware security modules to satisfy compliance requirements has created a substantial key management headache for CIOs and CSOs. Cryptsoft has addressed the challenges of greater visibility and control of the various keys in use within the enterprise by extending the Cryptsoft KMIP Server SDK to fully support the Hardware Security Modules (HSMs) from Oracle, SafeNet and Thales.
Cryptsoft has demonstrated the value of managing encryption keys using industry standard, interoperable protocols, integrated with the Oracle Sun Cryptographic Accelerator 6000 (SCA-6000), the SafeNet Protect Server External (PSE) and the Thales nShield Connect. The combined solutions offer a direct management interface for the HSM-resident keys, at the same time providing configuration and policy controls around a range of HSM functions. This integration has also been extended to include the quantum random number generation capability of the Quantis solution from ID Quantique to enable entropy to be selected from one or more hardware solutions.
“The OASIS PKCS#11 v2.40 committee specification provides the only cross-vendor, platform-neutral API for interaction with the full range of security devices from smartcards to hardware security modules. PKCS#11 addresses the integration requirements for security-aware applications and services. The OASIS KMIP specification is entirely complementary to PKCS#11 and both groups are working together to enable interoperable solutions at each level of the software architecture stack”. Dr Robert Griffin, co-chair OASIS PKCS#11 TC, Chair Emeritus OASIS KMIP TC and Chief Security Architect, RSA the security division of EMC.
“The KMIP specification version 1.2 added support for cryptographic operations and version 1.3 addresses the capabilities for streaming operations. This aligns the requirements of key management and security operations across KMIP and PKCS11. Substantial common membership between the technical committees has delivered both API and network level interoperability, enabling a new range of products for end-customer usage”. Tony Cox, Co-chair OASIS KMIP TC and Director Strategy and Alliances Cryptsoft.
Cryptsoft demonstrated an early release of the Cryptsoft KMIP Server SDK running on the SafeNet Protect Server External platform at the RSA USA conference in February 2014 and has continued beta testing the hybrid product leading to its formal release. The Cryptsoft SDKs deliver standards-conforming KMIP and PKCS#11 software development kits for OEM integration.
“KMIP has evolved well beyond its original base for encryption key management in a storage environment, into a fully capable cross-vendor enterprise key management infrastructure protocol, available in a range of enterprise products on the market today. KMIP v1.2 has added capability for HSM-managed-
Cryptsoft provides specialist products and services for software and hardware developers in the areas of security system design, deployment, validation and interoperability. Cryptsoft offers a range of software development toolkits to enable the rapid integration of enterprise key management solutions into applications. Cryptsoft is an industry leader in key management, offering a full range of innovative KMIP SDKs in C, Java and C# for quickly and securely implementing KMIP Clients and KMIP Servers. Cryptsoft is also an OASIS Sponsor, and SNIA and SSIF Voting Member. Cryptsoft was founded in 1996 and is based in Brisbane, Australia. For more information see http://www.cryptsoft.com/