Trending...
- Styrofoam Recycling Returns to Tacoma Recycle Center
- Umbrella Becomes First FinOps Platform to Support AWS Billing Transfer Onboarding
- HRC Fertility's Dr. Christo G. Zouves Appointed to San Mateo County Medical Association Board of Directors
SEATTLE--(BUSINESS WIRE)--The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Cloud Key Management System with External Origin Key. Written by the Cloud Key Management Working Group to help organizations optimize such business outcomes as security, agility, cost, and compliance, the paper provides general guidance for choosing, planning, and deploying cloud-native key management systems (KMS) in cases where organizations either want to or must import key material (e.g., keys, vaults, secrets, policies) from an external source.
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
- Connecticut Resident Develops Patent-Pending Concept Exploring a New Approach to GPS Navigation
- JP Events Azerbaijan to Host 2nd Women in Motorsport Event During the Azerbaijan Grand Prix Week
- Spokane: SPD Air Support Unit Continues to be a Vital Tool for the Department
- Spokane: J-Turn Project Requires Meadowlane Closure
- Resident Inspect Joins Property Meld Nexus Network with API Integration
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
- Tacoma: 2026 Historic Preservation Awards on May 21
- L2 Aviation Awarded IDIQ Contract by the U.S. Army for M1A2 Abrams Tank
- Sycor.Rental Named Among 2026 Best Microsoft Dynamics ERP Supply Chain Solutions
- Veikkaus Appoints New CFO as Finland's Gambling Monopoly Braces for Breakup
- Spokane: SPD SIU Unit Makes Additional Arrests on Wanted Fugitives
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
0 Comments
Latest on Washingtoner
- Federal Way Murder Suspect Taken into Custody in Spokane
- BTR: i2 Group Launches i2 Amplify, a Community Platform for Intelligence Professionals Worldwide
- L.A. Watts Summer Games Announces Free Pelé Tribute Event at Magic Johnson Park
- Public Hearing Regarding 2026 Amendment to One Tacoma Comprehensive Plan and Land Use Regulatory Code on May 19; Information Session on May 9
- SUMOFIBER Fuels Explosive Growth With netElastic vBNG
- NRx Pharmaceuticals (N A S D A Q: NRXP) Accelerates Into National Spotlight as Manufacturing Launch, Federal Policy & AI-Driven Breakthroughs Converge
- Expanding Into High-Margin Battery Recycling With Black Mass Strategy plus Scaling AI Infrastructure & Global Supply Chain Platform: N A S D A Q: MWYN
- Long-Distance Couples Spend Nearly $7,000 on Travel Before Moving In Together, New Mayflower Research Finds
- imggpt Launches AI-Powered GPT Image Generator and Photo Editor for Creative Teams
- Intuitive Flow Systems Launches Mokēd Meditation Whistle
- Styrofoam Recycling Returns to Tacoma Recycle Center
- More Life Summit 2026 Announces Gary Brecka & Mr. Olympia Derek Lunsford as First Speakers for Miami Event
- Michael H. Kaplan, Colorado Workers' Compensation Attorney, Rallies Athlete Unions Against Proposed Legislative "Carve-Outs"
- Viasat, Galaxy 1 Communications and L2 Aviation to bring avionics integration to Advanced Air Mobility
- Tacoma: OMWBE Intro to Certification 101 Workshop on May 18
- Spokane Police arrest male for threats against "The Villages" and Mar-A-Lago
- Fulton County DA Fani Willis Officially Endorses Dr. Heavenly Kimes + Black Economic Agenda
- AI-Branding Podcast Launches Season 2 Featuring AI Thought Leader on Search Strategy
- Applicants Sought for the Tacoma Area Commission on Disabilities
- Spokane: Flags Lowered for National Firefighters Memorial Day