Trending...
- AdvisorVault Adds Social Media Archiving to its Consolidated D3P Service
- City of Spokane Launches New Webpage, Notice Document to Connect Residents with Eviction Prevention Resources
- Author Releases 7-Day Screen Time Reset for Families as Teachers Worldwide Report Children "Struggling to Grasp Basic Concepts"
SEATTLE--(BUSINESS WIRE)--The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Cloud Key Management System with External Origin Key. Written by the Cloud Key Management Working Group to help organizations optimize such business outcomes as security, agility, cost, and compliance, the paper provides general guidance for choosing, planning, and deploying cloud-native key management systems (KMS) in cases where organizations either want to or must import key material (e.g., keys, vaults, secrets, policies) from an external source.
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
- New Tribute Song Celebrating Seattle'
- New analysis reveals second job workers keep just 80p in every pound they earn
- NRE Health Institute Launches International Study Examining Motivations Behind Non-Sexual Nudity
- A Foundational Claim in Human Secrecy Goes Public
- Agape Leadership Academy Opens Nationwide Enrollment — State ESA Scholarships Cover Full Tuition for Families in 7 States
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
- Las Vegas Headliner Don Barnhart Brings National Touring Comedy Show to Comedy Cabana
- Nevada Boxing Hall of Fame Announces 14th Annual Induction Gala Weekend Honoring Classes of 2025 and 2026
- Brosix Celebrates 20 Years of Private Team Messaging for Small and Mid-Sized Businesses
- Top 15 Mosquito-Infested Cities in Louisiana and East Texas Ranked for 2026 Mosquito Season
- From Broken to Soaring Week 40
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
0 Comments
Latest on Washingtoner
- Heritage at South Brunswick Unveils Luxury Resort-Style Amenities Designed for Every Generation
- Spokane: Working Smoke Alarms Help Seven Escape Early-Morning House Fire
- CAPHRA warns push for ASEAN vape ban ignores science
- Spokane: Egypt National Team to Hold Open Training Session at Gonzaga University Ahead of FIFA World Cup 2026™
- Your Mortgage Toolbox Launches Free Mortgage Calculators That Show the Real Monthly Payment and Cash Needed to Close
- ENTOUCH Recognized on Inc.'s 2026 Best Workplaces List for the Third Year Running
- P-Wave Classics Opens Pre-Orders for Volume II of Robert Bage's Hermsprong
- City of Spokane Launches New Webpage, Notice Document to Connect Residents with Eviction Prevention Resources
- Tuckwell Machinery Launches New Range of Woodworking Machinery
- A Brave Little Hero with Four Paws
- Arux Group CEO Calls on Security Industry to End Hidden Subcontracting and White-Papering
- Revenue Optics Expands Its Private Equity Practice as Sponsors Move Inside Sales to the Center of Distribution Value Creation
- Ecuador Freedom Launches First Scheduled Motorcycle Tour of Northern Peru's Lost Kingdoms
- Lineus Medical Completes Financial Restructuring with KMF Investments- Launching a New Era for SafeBreak
- Neuro Recovery Institute Showcases Emerging Immersive Neuro-Rehabilitation Technology at Clinical Innovation Open House
- Community, Conservation & Waterwise Inspiration Bloom on June 6
- Industrial and systems engineers celebrate key leaders in the field at IISE Annual Conference
- Cosanostra Miami Rises as the Best Latin Nightclub in Miami in Under Two Years From its Opening
- CCHR Leader's 50-Year Fight for Psychiatric Drug Victims Gains National Momentum
- Author Releases 7-Day Screen Time Reset for Families as Teachers Worldwide Report Children "Struggling to Grasp Basic Concepts"