Trending...
- Spokane Police Department and SPD Cadets Engage with the Logan Community to Discuss Crime Prevention in the Neighborhood
- Spokane: Flags to be Lowered for Trooper Killed in Line of Duty
- Tacoma Police Seeking Vehicle of Interest in Fatal Collision Involving Washington State Patrol Trooper on SR-509
SEATTLE--(BUSINESS WIRE)--The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Cloud Key Management System with External Origin Key. Written by the Cloud Key Management Working Group to help organizations optimize such business outcomes as security, agility, cost, and compliance, the paper provides general guidance for choosing, planning, and deploying cloud-native key management systems (KMS) in cases where organizations either want to or must import key material (e.g., keys, vaults, secrets, policies) from an external source.
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
- eJoule Inc Participates in Silicon Dragon CES 2026
- HBZBZL Unveils "Intelligent Ecosystem" Strategy: Integrating AI Analytics with Web3 Incubation
- Kaltra Launches Next-Gen MCHEdesign With Full Integration Into MCHEselect — Instant Simulation & Seamless Microchannel Coil Workflow
- A Well-Fed World, Youth Climate Save and PAN International Launch PHRESH: A Global Directory of Plant-Based Hunger Relief Organizations
- Spokane: Shoplifting Blitz Nets Multiple Arrests as SPD Works to Curb Retail Thefts; Emphasis Continues as Christmas Approaches
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
- Haven Treatment Center Licensing Delays by Washington State Impeding Mental Health Access
- Tacoma: Update in SR-509 Fatal Collision Investigation: Vehicle of Interest Impounded
- Sexual Assault Suspect That Fled Spokane Area, Arrested in Connecticut; Extradition to Washington State Pending
- Spokane Police Department and SPD Cadets Engage with the Logan Community to Discuss Crime Prevention in the Neighborhood
- Mauritania's Cissé Boide Selected as the 2025 Ambassador of the Year
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
0 Comments
Latest on Washingtoner
- Russellville Huntington Learning Center Expands Access to Literacy Support; Approved Provider Under Arkansas Department of Education
- Tacoma Police Seeking Vehicle of Interest in Fatal Collision Involving Washington State Patrol Trooper on SR-509
- UK Financial Ltd Launches U.S. Operations Following Delaware Approval
- Pinealage: the app that turns strangers into meditation companions — in crowdfunding phase
- Proform Builds Completes Two Luxury Seattle Waterfront Renovation Projects
- "Micro-Studio": Why San Diegans are Swapping Crowded Gyms for Private, One-on-One Training at Sweat Society
- City of Spokane Seeks Applicants for Park Board
- South Spokane Standoff Ends Peacefully After Suspect Surrenders to Officers
- Beycome Closes $2.5M Seed Round Led by InsurTech Fund
- City of Vancouver Delaying Haven Treatment Center Facility's Certificate of Occupancy
- City of Spokane, Spokane County, Spokane Regional Emergency Communications Approve Interlocal Agreement to Support Safe, Coordinated Transition of Emergency Communication Services
- Tru by Hilton Columbia South Opens to Guests
- Christy Sports donates $56K in new gear to SOS Outreach to help kids hit the slopes
- "BigPirate" Sets Sail: A New Narrative-Driven Social Casino Adventure
- Phinge CEO Ranked #1 Globally by Crunchbase for the Last Week, Will Be in Las Vegas Jan. 4-9, the Week of CES to Discuss Netverse & IPO Coming in 2026
- Plainsight Announces Jonathan Simkins as New CEO, Succeeding Kit Merker
- Women's Everyday Safety Is Changing - The Blue Luna Shows How
- Microgaming Unveils Red Papaya: A New Studio Delivering Cutting-Edge, Feature-Rich Slots
- RollCraft Launches Pre-Roll Automation Machines for Producers Scaling Production in 2026
- Spokane: Simple Police Contact for a Civil Bike Infraction Ends in Arrest After Suspect Flees from Officers; Stolen Property Recovered After Suspect is Taken into Custody