Trending...
- Tacoma: Statement from District 4 Council Member Sandesh Sadalge on the Critical Importance of Centering Equity in Regional Transit Decisions
- Michele Mundy's "Divinely Tailored" Gains Momentum
- Evermore Bliss Launches AI Wedding Speech Writer to Help Users Create Personalized, Heartfelt Toasts
SEATTLE--(BUSINESS WIRE)--The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Cloud Key Management System with External Origin Key. Written by the Cloud Key Management Working Group to help organizations optimize such business outcomes as security, agility, cost, and compliance, the paper provides general guidance for choosing, planning, and deploying cloud-native key management systems (KMS) in cases where organizations either want to or must import key material (e.g., keys, vaults, secrets, policies) from an external source.
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
- Freedomtech Solutions creates 'Global Data Centre Network (IDCN)'
- Dual-Engine Growth Strategy Ignited: AI Infrastructure Breakout Meets Scalable Circular Economy Expansion: Marwynn Holdings, Inc. (N A S D A Q: MWYN)
- Super Bowl Champion Marvel Smith Inspires Launch of MVP-IQ Platform to Help Football Players Develop and Get Recruited Like the Pros
- The Future of Classic Cars in a World Moving Beyond Gasoline: How Electric Conversion Is Saving America's Automotive Heritage
- Tacoma: Pothole Palooza Returns May 4 – 15 to Focus on Maintenance and Preservation of 10 Arterial Roadways
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
- Xtel Communications Appoints David Appleman as VP of Strategic Sales
- L2 Aviation Acquires Advance Aero
- $112 Million Contract Backlog for Cycurion (N A S D A Q: CYCU) Enters Hyper-Growth Phase With, Strategic Acquisitions, & Exploding AI Cybersecurity
- HarryPotterObamaSonic10Inu Celebrates World Record 1,000+ Days Livestream with Record-Breaking Merchandise Launch
- Igniting High-Growth Expansion as Electrification Strategy and Infrastructure Dominance Converge; 88% Revenue Growth (N Y S E: MWG)
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
0 Comments
Latest on Washingtoner
- As Fluoride Debate Grips the Nation, Americans Turn to Whole-House Fluoride Filters for Answers
- FOCUS Hires Carrier-Side Operations Leader to Build the Next Generation of Insurance Service Delivery
- Adams Security Group LLC Launches New Website to Expand Professional Security Services Across Florida
- Presidential Acceleration of Psychedelic Therapies Enters a Defining Moment as Federal Policy, FDA Alignment & Breakthrough Neurotechnology Converge
- Peernovation And Inception Stratos Launch Joint Venture To Build A Global Peer-powered Performance Platform
- GDE Tree Services Expands Operations Across Logan, Ipswich and the Gold Coast
- UK AltNet FullFibre Solves IPv4 Shortage With netElastic BNG And CGNAT Networking Software
- Tacoma: Applicants Sought for the Equity in Contracting Advisory Committee
- Tacoma: Hylebos Bridge Closed to Vehicular Traffic
- Studica Robotics Receives 2026 Partner Excellence Award from FIRST® Robotics Canada
- Seven Games That Make You Think (and Smile) Earn 2026 Mensa Select® Honors
- The Ramen Rater Unveils Top Ten Instant Noodles Of All Time – 2026 Edition
- New Research Reveals Gen Z Trusts Independent Sources Over Influencers — Exposing What We are Talker Calls "The Independent Validation Gap"
- City of Tacoma's Public Works Department Recognized by American Public Works Association
- New research identifies The Discovery Gap: Seven in 10 Americans say travel is no longer just about getting away
- PropAccount.com Adds Equities to Its Multi-Asset Prop Firm Platform, Opening the Door to the World's Largest Trading Market
- Ailias Launches Global Partner Programme for AI-Powered Conversational Digital Humans in Events and Experiences
- Village People Headline "Rock The Rainbow" Phuket Pride Finale 2026
- SilverBow Strategies Launches RFPArchon™, the First Product in Its Artemis AI Solutions™ Suite
- Sawasdee Anime Launches Animenture: A Gamified SNS Connecting Global Fans to 2,000+ Anime Sites