Trending...
- Spokane: Indian Canyon Golf Course Opens Thursday, March 12, 2026
- Independent Financial Agencies Upgrade City of Tacoma's Bond Ratings Amid Broader Economic Uncertainty
- Tacoma City Council Votes to Enter Negotiations with Hyun Kim for City Manager Role
SEATTLE--(BUSINESS WIRE)--The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Cloud Key Management System with External Origin Key. Written by the Cloud Key Management Working Group to help organizations optimize such business outcomes as security, agility, cost, and compliance, the paper provides general guidance for choosing, planning, and deploying cloud-native key management systems (KMS) in cases where organizations either want to or must import key material (e.g., keys, vaults, secrets, policies) from an external source.
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
- Tacoma: Asphalt Repairs on Ruston Way to Cause Single-Lane Traffic and Delays on Saturday, March 21
- K2 Integrity Enhances Technology Capabilities Through Acquisition of Leviathan Security Group
- #WeAreGreekWarriors Comes to Detroit in Celebration of Women's History Month
- Buildout Launches CRM, Completing the Industry's First AI-Powered End-to-End Deal Engine for CRE
- Energywise Solutions and Pickleball Pros Partner to Bring More Energy and Visibility to Pickleball Clubs
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
- The Franchise King® Releases Free Guide for Nervous Buyers
- The Unsweetened Tooth Declares the End of Sugar‑Spiked Cookies
- Kanguro Insurance Taps Paylode to Launch Best-in-Class Pet and Renters Insurance Rewards Experience
- CCHR: CIA Mind-Control Files Raise Urgent Questions as Millions Take Psychotropic Drugs
- NRx Pharmaceuticals Launches Breakthrough One-Day Treatment Clinic in Florida as FDA Pathway and Clinical Data Strengthen Growth Outlook; $NRXP
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
0 Comments
Latest on Washingtoner
- Notice: Hrm Queen Laurence I Assumes Crown Control & $317q Fund. 3bn Unopoly Shares Settled. Requisition Of Buckingham Palace & Windsor Castle Final
- 13 Full Moons of Black Dandelion Convergent Voice™ An Integration of Literacy & Wellness Symposium
- Yoga Retreats, Ecstatic Dance & Spiritual App launched
- Elder Abuse Case Against Healthy Traditions Owner Raises Questions As To The Dire Reality Of Abuse Against The Last Of The Baby Boomers
- Spokane: Indian Canyon Golf Course Opens Thursday, March 12, 2026
- Federal Contract Fraud: The GUBERMAN Anomaly Exposes Boeing–ANAB Collusion in Contract 19AQMM18R0131
- Simpalm Staffing Services Launched its Refreshed Website for Remote Staffing Services
- Claude Riveloux Review 2026: How the $10B Fund Manager Dispels 'Scam' Rumors Through Education
- Pure Energy Electrical Services, LLC Announces Strong Start to 2026, Reinforcing Customer-First Electrical Service Across Northeast Florida
- The GUBERMAN Anomaly: Boeing's Alliance with ANSI–ANAB Exposed in Federal Contract 19AQMM18R0131
- Danholm Collection Launches Boutique Luxury Real Estate Brokerage in Central Florida
- Sellvia Market Expands Curated Store Portfolio for Dropshipping Sellers
- Food Journal Magazine Raises the Standard for Restaurant Reviews in Los Angeles
- StaffReady Expands Its Clinical Workforce Platform with ScheduleReady Compliance and Scheduling Suite
- Williamsville Spa Expands Team to Meet Growing Demand for Professional Facials
- PNW Virtual Health Announces Grand Opening of New Downtown Seattle Clinic
- Pregis Expands Wind Energy Use, Advancing Progress Toward Net Zero by 2040
- Dr. Sheel Desai Solomon and Preston Dermatology Continue Awards Streak with Top Honors in 2026 Maggy Awards
- How Boeing's 2002 Mandates, ANAB's Federal Underwriter Fraud, and the 2026 GLOBAC Merger Exposed a Collapse in Certification Across All Industries
- Jack and Sage Acquires Sustainable Apparel Brand Kastlfel, Expanding Premium Logo Wear Across National Parks and Ski Resorts